Thank you for helping PROJECT_NAME stay secure. If you've identified a security vulnerability, please follow the reporting guidelines below to submit your finding. We aim to reply within XX days of receiving your finding. If a finding is accepted, we aim to publish a patch within XX days. If it is declined, we will reply to let you know.
Email SECURITY_TEAM_EMAIL with the following information:
- Name / affiliation
- Vulnerability description
- Steps to reproduce the issue
- Current public knowledge of this vulnerability (e.g. related CVE, security advisory, etc.)
At this time, only the following versions of PROJECT_NAME are supported:
| Version | Supported |
|---|---|
| 5.1.x | ✅ |
| 5.0.x | ❌ |
| 4.0.x | ✅ |
| < 4.0 | ❌ |
The following PGP key can be used to encrypt your message's contents:
PGP_PUBLIC_KEY