We release patches for security vulnerabilities in the following versions:
| Version | Supported |
|---|---|
| 1.x | ✅ |
| 0.x | ❌ |
If you discover a security vulnerability, please follow the steps below:
-
Do Not Open an Issue: Security issues should not be discussed in public GitHub issues. Instead, send a private email to the project maintainers.
-
Contact Information:
- Email: Ruan@isruan.com
-
Details to Include:
- Description of the vulnerability.
- Steps to reproduce the vulnerability.
- Possible impacts of the vulnerability.
- Any potential fixes or mitigations you may have.
-
Expected Timeline:
- We will acknowledge receipt of your report within 48 hours.
- We will provide a detailed response within 7 days, including our assessment of the issue, a mitigation plan, and an estimated timeline for a fix.
We will communicate all security updates and vulnerabilities through:
- GitHub Releases
- Security Advisories
Thank you for helping us keep RuanScript secure for everyone.