We actively support security updates for the following versions:
| Version | Supported |
|---|---|
| Latest | ✅ |
We take the security of our software seriously. If you believe you have found a security vulnerability, please report it to us as described below.
Please do not report security vulnerabilities through public GitHub issues.
Instead, please report them via one of the following methods:
- Private Vulnerability Reporting (Preferred): Use GitHub's Private Vulnerability Reporting feature
- Email: Contact the maintainer team at
labs@liatrio.com
When reporting a vulnerability, please include:
- A description of the vulnerability
- Steps to reproduce the issue
- Potential impact of the vulnerability
- Any suggested fixes or mitigations (if available)
- Initial Response: Within 48 hours
- Status Update: Within 7 days
- Resolution: Depends on severity and complexity
We follow a coordinated disclosure process:
- We will acknowledge receipt of your report within 48 hours
- We will investigate and provide status updates as appropriate
- We will work with you to understand and resolve the issue
- We will credit you for the discovery (unless you prefer to remain anonymous)
- We will publish a security advisory once the issue is resolved
When using this template or creating repositories from it:
- Keep dependencies up to date
- Review and customize security settings for your specific use case
- Enable branch protection rules
- Use CODEOWNERS to ensure code review
- Regularly audit your repository configuration
Security updates will be released as patches to the latest version. We recommend keeping your repository up to date with the latest template changes.