| Version | Supported |
|---|---|
| 1.x | ✅ |
We take the security of our project seriously. If you discover any security-related issues or vulnerabilities within this project, please help us by reporting it. We greatly appreciate your efforts in responsibly disclosing the issue to us.
To report a security vulnerability, follow these steps:
-
Create a GitHub Issue:
- Go to our Issues tab on GitHub.
- Click on the "New Issue" button.
- Select the "Security Vulnerability" template, if available. If not, you can create a regular issue and label it as "security."
-
Provide Details:
- Describe the vulnerability in detail, including any steps to reproduce it if possible.
- If you have a proposed solution or workaround, feel free to include it.
-
Security Disclosure:
- Do not publicly disclose the vulnerability until it has been addressed by the project maintainers.
- If you would like, you can request to be credited for discovering the vulnerability. If so, please let us know how you'd like to be acknowledged (e.g., name, username, or anonymously).
-
Responsible Disclosure:
- We request that you refrain from malicious activities, such as exploiting the vulnerability or attempting to gain unauthorized access to systems.
-
Communication:
- Our team will acknowledge your report within a reasonable timeframe.
- We may ask for additional information or clarifications regarding the reported issue.
- We will work towards addressing the vulnerability and will keep you informed of the progress.
Thank you for helping to keep our project secure!
Note: If you believe the vulnerability is critical or poses an immediate threat, please email us directly at security@crazy-goat.com instead of creating a GitHub issue.