Currently, as Restman is maintained by a single individual, only the latest version will receive security updates. Please see the table below for which versions are currently being supported with security updates.
| Version | Supported |
|---|---|
| 0.1.x | ✅ |
| < 0.1 | ❌ |
The security of Restman is taken seriously. If you believe you have found a security vulnerability in Restman, please report it directly to the maintainer. Your reports are greatly appreciated and will be investigated as quickly as possible.
Please follow these steps to report a security vulnerability:
-
Do not report security vulnerabilities through public GitHub issues.
-
Instead, please send an email directly to the maintainer, Lech Twaróg, at [email protected] with the following information:
- A clear description of the issue, including any potential impact.
- Steps to reproduce the issue or a proof of concept.
- Any relevant tools, versions, or dependencies.
- Your contact information for follow-up.
-
Please allow a reasonable amount of time for a response before disclosing the issue publicly.
-
Additional information may be requested to understand the scope or severity of the vulnerability.
-
You will be kept informed about the progress toward a fix and full announcement, and your assistance may be sought in resolving the issue.
Upon receiving a vulnerability report, the maintainer will:
- Acknowledge receipt of your report.
- Investigate the issue within a reasonable timeframe.
- Work with you to resolve the vulnerability.
Reports will be handled with strict confidentiality, and personal information will not be disclosed to third parties without consent.
Contributors who report a unique and confirmed vulnerability will be recognized for their efforts. If you wish to remain anonymous, please state so in your initial report.
Thank you for your contribution to the security of Restman.