Only the latest release on the main branch is actively supported with security updates.
| Version | Supported |
|---|---|
| latest | ✅ |
| < latest | ❌ |
If you discover a security vulnerability in Argus Framework, please report it responsibly.
Do NOT open a public issue for security vulnerabilities.
Instead, use one of the following methods:
- Open a private security advisory via GitHub Security Advisories.
- Contact the maintainer directly via GitHub (@tecnosor) with the subject line
[SECURITY] Argus Framework Vulnerability.
- A clear description of the vulnerability
- Steps to reproduce (if applicable)
- Possible impact assessment
- Any suggested fixes or mitigations
- You will receive an acknowledgment within 72 hours.
- We will investigate and aim to provide a status update within 7 days.
- Once resolved, we will coordinate disclosure and credit the reporter (unless anonymity is requested).
- Never commit secrets, API keys, or credentials to the repository.
- Ensure all dependencies are up to date.
- Follow the principle of least privilege in any code changes.
Thank you for helping keep Argus Framework secure.