We actively maintain security updates for the following versions:
| Version | Supported |
|---|---|
| 1.x | ✅ |
| 0.x | ❌ (no longer supported) |
If you discover a security vulnerability in this project, please follow these steps:
-
Do not open a public issue.
Please email us privately to allow time for remediation before public disclosure. -
Contact:
- 📧 Email: MoeJue@qq.com
- 🕒 Expected Response Time: 1–3 business days
-
Information to include in your report:
- A clear and detailed description of the vulnerability
- Steps to reproduce the issue
- Potential impact or severity
- (Optional) Any suggested fix or patch
-
Responsible Disclosure Policy: We believe in responsible disclosure and commit to:
- Confirming and triaging valid reports promptly
- Patching and releasing a fix within 30 days
- Crediting the reporter in the changelog (with consent)
To keep your environment safe, we recommend:
- Always use the latest stable version
- Avoid using deprecated versions
- Keep your dependencies updated regularly
- Use a secure environment (e.g. HTTPS, proper file permissions)
🔐 Thank you for helping us keep our project safe and secure!