shob is under active development and ships frequently. Security fixes are applied to the latest released version only. Please make sure you are running the most recent release before reporting an issue.
| Version | Supported |
|---|---|
| Latest release | ✅ |
| Older releases | ❌ |
Please do not open a public GitHub issue for security vulnerabilities.
Instead, report it privately through one of the following channels:
- GitHub Security Advisories — use the Report a vulnerability button on the repository's Security tab (preferred).
- Email — programmernazmul1@gmail.com
When reporting, please include as much detail as possible:
- A description of the vulnerability and its potential impact
- Steps to reproduce, or a proof of concept
- The affected version, platform, and configuration
- Any suggested remediation, if you have one
- Acknowledgement within 72 hours of your report.
- An initial assessment and severity triage within 7 days.
- Regular updates on progress until the issue is resolved.
- Credit for the discovery once a fix is released, unless you prefer to remain anonymous.
Thank you for helping keep shob and its users safe.