Security fixes are applied to the main branch and the latest release tag. Older releases are not supported.
| Version/Branch | Supported |
|---|---|
| Latest release | Yes |
main branch |
Yes |
| Older releases | No |
Do not open a public issue for security problems.
Report privately using:
- Email: hassanfareswork@gmail.com
Include:
- What the bug is and what an attacker can do
- Affected version/commit and files
- Steps to reproduce or a PoC
- Logs/traces if relevant
Disclosure:
- Coordinated disclosure is expected. Default target is 90 days unless a fix requires more time or the issue is critical.