This project is currently under active development. Security updates are applied to the latest version only.
| Version | Supported |
|---|---|
| Latest | ✅ |
| Older | ❌ |
If you discover a security vulnerability, please do not open a public issue. Instead, follow these steps:
-
Contact Maintainers Privately:
create a security advisory. -
Response Time:
We aim to respond within 48 hours. If the issue is confirmed, we will work on a fix and release a patch. -
Disclosure Policy:
Vulnerabilities will be disclosed publicly after a patch is released, with credit to the reporter (unless requested otherwise).
- Dependencies: This project uses GitHub Actions for CI. Dependencies are checked automatically via Dependabot.
- Permissions: Workflows use least-privilege tokens (
GITHUB_TOKENor scoped PATs). - Auditing: Markdown files are linted and checked for malicious links.
This policy applies to:
- All
.mdfiles in this repository. - GitHub Actions workflows (
.github/workflows/*.yml).
Last Updated: 25-03-2025
Maintainers: @DadaNanjesha