Use this section to tell people about which versions of your project are currently being supported with security updates.

We take the security of Text Modifier seriously. If you believe you have found a security vulnerability, please report it to us as described below.

1. DO NOT create a public GitHub issue for the vulnerability.
2. DO email us at security@yourdomain.com with the subject line [SECURITY] Text Modifier Vulnerability Report.
3. DO include a detailed description of the vulnerability, including:
   • Type of issue (buffer overflow, SQL injection, cross-site scripting, etc.)
   • Full paths of source file(s) related to the vulnerability
   • The location of the affected source code (tag/branch/commit or direct URL)
   • Any special configuration required to reproduce the issue
   • Step-by-step instructions to reproduce the issue
   • Proof-of-concept or exploit code (if possible)
   • Impact of the issue, including how an attacker might exploit it

• You will receive an acknowledgment within 48 hours
• We will investigate and provide updates on our progress
• Once the issue is confirmed, we will work on a fix
• We will coordinate the disclosure with you
• We will credit you in our security advisory (unless you prefer to remain anonymous)

We ask that you:

• Give us reasonable time to respond to issues before you disclose them publicly
• Provide sufficient information to reproduce the problem so we can fix it
• Avoid accessing or modifying other users' data
• Avoid performing actions that may negatively impact other users' experience

When using Text Modifier:

• Keep your browser and operating system updated
• Use HTTPS when accessing the application
• Be cautious when uploading files from untrusted sources
• Report any suspicious behavior immediately

Text Modifier implements several security measures:

• Input Validation: All user inputs are validated and sanitized
• XSS Protection: Content Security Policy headers are implemented
• CSRF Protection: Cross-Site Request Forgery protection is in place
• Secure Headers: Security headers are configured appropriately
• File Upload Restrictions: File types and sizes are limited

For security-related issues, please contact:

• Email: security@yourdomain.com
• PGP Key: [Your PGP Key Fingerprint] (if applicable)

We would like to thank all security researchers who responsibly disclose vulnerabilities to us. Your contributions help make Text Modifier more secure for everyone.