We currently support the following versions of our project:
| Version | Supported |
|---|---|
| 4.x | ✅ |
| 3.x | ❌ |
| 2.x | ❌ |
| 1.x | ❌ |
We take the security of our project seriously. If you discover a security vulnerability, please follow these steps:
- Do not disclose the vulnerability publicly until it has been addressed by our team.
- Email us at [email protected] with details of the vulnerability.
- Include steps to reproduce the issue, if possible.
- We will acknowledge receipt of your report within 48 hours.
- Dependency Management: We use Dependabot to monitor and update our dependencies regularly. This helps us maintain the latest security patches.
- Code Review: All changes to the codebase undergo a thorough code review process before being merged.
- Regular Audits: We conduct periodic security audits of our codebase and infrastructure.
- Once a vulnerability is reported, we will investigate and validate the issue.
- We will work on a fix and release it as soon as possible, depending on the severity of the vulnerability.
- We will notify users of the affected versions and provide upgrade instructions.
We encourage all users and contributors to follow these security best practices:
- Keep your local environment and dependencies up to date.
- Use strong, unique passwords for all accounts associated with the project.
- Enable two-factor authentication (2FA) where available.
- Be cautious when handling sensitive data and avoid committing secrets to the repository.
For any questions or concerns regarding the security of this project, please contact us at [email protected].
Thank you for helping us keep our project secure!