We release patches for security vulnerabilities in the following versions:
| Version | Supported |
|---|---|
| 2.0.x | ✅ |
| < 1.0 | ❌ |
We take security seriously. If you discover a security vulnerability in wshawk, please report it responsibly.
Email: security@rothackers.com
Please include:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix (if any)
- Initial Response: Within 48 hours
- Status Updates: Every 5-7 days
- Fix Timeline: Critical issues within 7 days, others within 30 days
- Report received - We'll acknowledge your report within 48 hours
- Investigation - We'll investigate and validate the issue
- Fix development - We'll develop and test a fix
- Disclosure - We'll release a patch and credit you (if desired)
Please give us reasonable time to fix the issue before public disclosure. We'll work with you to ensure proper credit and coordinated disclosure.
Security patches are released as soon as possible. Subscribe to releases to stay updated:
- Watch this repository
- Check the Releases page
- Vulnerabilities in dependencies (report to the dependency maintainers)
- Social engineering attacks
- Physical attacks
Thank you for helping keep wshawk secure!