Security fixes are generally applied to the latest maintained code in this repository.
If you are reporting a vulnerability, please confirm the affected version, commit, or branch when possible.
Please do not report security vulnerabilities in public GitHub issues.
Instead, report them privately by contacting the maintainer through GitHub:
- Open a private security advisory on GitHub, if available
- Or contact the repository owner directly through their GitHub profile: https://github.com/blacknon
Please include:
- a description of the issue
- affected versions or commits
- reproduction steps or proof of concept
- impact assessment
- any suggested mitigation, if known
After a report is received, the issue will be reviewed and triaged. If the report is confirmed, a fix will be prepared and released when appropriate.
Please avoid public disclosure until the issue has been reviewed and a remediation plan is in place.