Only the latest major version is currently receiving security updates.
| Version | Supported |
|---|---|
| 1.x.x | ✅ |
Security is a top priority for this project. If you discover a vulnerability, we would like to know about it so we can take steps to address it as quickly as possible.
Please do NOT report security vulnerabilities via public GitHub issues.
Instead, please email the maintainer directly or use GitHub's private vulnerability reporting feature.
- Context Isolation: Enabled by default to prevent the renderer from accessing Node.js internals.
- Node Integration: Disabled in the renderer process.
- IPC Validation: All IPC messages are validated in the main process before execution.