The following versions of this project are actively supported with security updates:

If you're using an unsupported version, please upgrade to the latest release to ensure you receive security updates.

If you discover a security vulnerability in this project, please report it privately to the maintainers. Publicly disclosing vulnerabilities before they are addressed creates unnecessary risk for users.

1. Email the maintainers at [[email protected]] with the subject line: SECURITY ISSUE: [Brief Description].
2. Include the following details in your report:
   • A clear description of the vulnerability.
   • Steps to reproduce the issue.
   • Potential impact or exploit scenarios.
   • Any relevant logs, screenshots, or proof-of-concept code.
3. Allow up to 48 hours for an initial response.

We will work with you to validate and address the issue as quickly as possible. Critical vulnerabilities will be prioritized.

Once a vulnerability has been resolved, we will disclose it responsibly by:

1. Publishing a security advisory in this repository.
2. Notifying affected users via release notes or other appropriate channels.
3. Crediting the reporter (if desired) while respecting their privacy.

While we strive to ensure this project is secure, users should take additional precautions:

• Keep your dependencies up-to-date.
• Use secure configurations when deploying this project.
• Regularly audit your environment for potential vulnerabilities.

Security is a shared responsibility. By reporting vulnerabilities responsibly and following best practices, you help maintain the integrity of this project and its community.

Thank you for helping us keep this project secure!