This is a small static React app. Security fixes are accepted for the current main branch.
Please do not open public issues for suspected security vulnerabilities.
Report security concerns privately to the maintainer through GitHub. Include:
- π§Ύ A clear description of the issue.
- π Steps to reproduce it.
- π The affected URL, dependency, or source file.
- π οΈ Any suggested fix, if you have one.
The maintainer will review the report and respond as soon as practical. If the issue is valid, the fix will be prepared privately where needed and then released with an appropriate note.
Dependency updates should keep npm audit clean where practical. If a vulnerability cannot be fixed immediately without a breaking change, document the reason in the pull request.