Use this section to tell people about which versions of your project are currently being supported with security updates.
| Version | Supported |
|---|---|
| 5.1.x | ✅ |
| 5.0.x | ❌ |
| 4.0.x | ✅ |
| < 4.0 | ❌ |
Please report suspected security vulnerabilities by email to security@example.com. If your platform supports private advisories (for example, GitHub Security Advisories), you may also submit reports there.
When reporting, please include:
- A description of the issue and its potential impact
- Steps to reproduce (proof of concept if available)
- Affected versions/commit hashes and environment details
- Any suggested mitigations or fixes
We will acknowledge receipt within 3 business days and provide a status update within 7 business days. After validation, we will coordinate remediation and disclosure with you. Please do not publicly disclose the issue until we have released a fix or mitigation and agreed on a disclosure timeline.
If a report is determined not to be a security vulnerability, we will let you know with a brief explanation.