Skip to content

Security: hyperadev/UltraStaffChat

SECURITY.md

UltraStaffChat Security Policy

The purpose of this document is to outline how UltraStaffChat's maintainers will handle any Security Vulnerabilities discovered.

Supported Versions

We provide security patches for the latest release of UltraStaffChat. This means that we will only address security vulnerabilities that affect the most recent version of this plugin.

Version Supported
5.2.x
< 5.2.x

Reporting a Vulnerability

If you discover a security vulnerability in UltraStaffChat, we encourage you to report it to us as soon as possible so that we can investigate and address the issue.

You can report a security vulnerability in UltraStaffChat by:

When reporting a security vulnerability, please provide as much detail as possible about the issue, including how it can be reproduced and what the potential impact of the vulnerability may be.

Responsible Disclosure and Credit

We take the security of UltraStaffChat very seriously. As such, we encourage responsible disclosure of security vulnerabilities in UltraStaffChat. If you report a security vulnerability to us responsibly, we will credit you when we publish a Security Advisory.

We define responsible disclosure as follows:

  • Disclosing the vulnerability directly to us, rather than publicly disclosing it.
  • Allowing us a reasonable amount of time to address the vulnerability before publicly disclosing it.
  • Not exploiting the vulnerability or any related vulnerabilities to gain unauthorised access to systems or data.

Conclusion

By following this Security Policy, we aim to maintain the security of UltraStaffChat and our users.
If you have any questions or concerns about this policy or UltraStaffChat's security practices, please do not hesitate to contact us at security@hypera.dev.

There aren’t any published security advisories