If you discover a security vulnerability in Better Hub, please report it responsibly.
Do not open a public GitHub issue.
Instead, email us at security@better-auth.com with:
- A description of the vulnerability
- Steps to reproduce
- The potential impact
- Any suggested fix (optional)
- Acknowledgment: within 48 hours
- Initial assessment: within 1 week
- Fix or mitigation: as soon as possible, depending on severity
| Version | Supported |
|---|---|
Latest main |
Yes |
| Older releases | No |
We follow coordinated disclosure. Once a fix is released, we will:
- Credit the reporter (unless they prefer anonymity)
- Publish a brief advisory describing the issue and the fix
We ask that you give us reasonable time to address the issue before any public disclosure.