The following table outlines the versions of our project that are currently supported with security updates:
| Version | Supported |
|---|---|
| 16.0.x | ✅ |
| < 16.0 | ❌ |
We encourage users to report security vulnerabilities to help us maintain the safety and integrity of our project. Please follow these steps to report a vulnerability:
-
Open an Issue: Navigate to the Issues section of our repository and create a new issue.
-
Use the "Security" Label: When creating the issue, apply the "Security" label to categorize it appropriately.
-
Provide Detailed Information: Include comprehensive details about the vulnerability, such as:
- Steps to reproduce the issue
- Potential impact
- Any suggested solutions or mitigations
-
Response Time: Our team will acknowledge and begin investigating reported vulnerabilities within one week during business days. We will keep you informed about the progress and any actions taken.
-
Confidentiality: To protect our users, please refrain from publicly disclosing the vulnerability until we have addressed it and released a fix.
By adhering to this process, you assist us in ensuring the security and reliability of our project.
Note: This policy is based on best practices for vulnerability management and coordinated disclosure. Learn more