The maintainer of Keg takes security seriously. If you discover a security issue, please bring it to our attention right away!
Please DO NOT file a public issue, instead send your report privately to security@nexacloud.dev.
You can expect a response within 72 hours, acknowledging the issue was received.
After receiving the report, we will perform an initial analysis to:
- Confirm the vulnerability
- Determine its scope and impact
- Plan necessary fixes
Once confirmed, we will:
- Create a draft security advisory on GitHub
- Develop and test a fix
- Release a patch
- Publicly disclose the issue once patched
This project only maintains the current release and main branch.
Previous versions are not supported and users are encouraged to
always use the latest version.
For version information and updates, see the Releases page.