We are committed to keeping kmpworkmanager secure for the Kotlin Multiplatform community. Security updates are prioritized for the latest major version.

We take security seriously and appreciate your help in keeping our library safe. If you discover a potential security vulnerability, please report it through the proper channels.

Please do not report security vulnerabilities via public GitHub issues.

Please send an email to datacenter111@gmail.com with the following information:

• A clear description of the vulnerability.
• Steps to reproduce the issue (code snippets or a sample project are highly appreciated).
• Any potential impact you've identified.

1. Acknowledgment: We will acknowledge your report within 48 hours.
2. Investigation: Our team will investigate the issue and determine its severity.
3. Fix: We will work on a fix and release a patched version as a priority.
4. Disclosure: Once the fix is released, we will publish a security advisory and provide credit to you for the discovery (unless you prefer to remain anonymous).

To ensure your application remains secure while using Grant:

1. Keep Updated: Always use the latest stable version from Maven Central.
2. Check Manifests: Regularly audit your AndroidManifest.xml and Info.plist to ensure you are only requesting the minimum permissions required for your app's functionality.
3. Avoid Beta/Snapshots: Use official releases in production environments to ensure you have the latest verified security fixes.

Thank you for helping us make kmpworkmanager the most secure and reliable permission library for KMP! ❤️