| Version | Supported |
|---|---|
| Latest release | Yes |
| Older releases | No |
Security fixes are provided on a best-effort basis for the latest release only.
If you believe you have found a security vulnerability in ExStruct, please report it by email to harumiweb.security@gmail.com.
For vulnerabilities or other sensitive security problems that are not already public, please do not open a public GitHub issue first. Email is the preferred initial reporting channel.
If the issue is already public or is not sensitive, GitHub Issues can still be used for general discussion after the initial report or for non-security bugs.
Please include as much of the following as you can:
- affected ExStruct version
- platform and environment details
- reproduction steps or a proof of concept
- expected impact
- any suggested mitigation or fix ideas
ExStruct is maintained as a personal project, so security triage and fixes are handled on a best-effort basis.
There is no official SLA or guaranteed response time, but I will try to acknowledge reports and assess severity when possible.
Please avoid public disclosure until the issue has been reviewed and a mitigation or fix path is clear.
For general bugs, usage questions, and non-sensitive discussion, please use GitHub Issues.