We take the security of our project seriously. If you believe you have found a security vulnerability, please follow these steps:
- DO NOT disclose the vulnerability publicly until it has been addressed by our team.
- Email us at fenil@fenilsonani.com with details about the vulnerability.
- Include the following information in your report:
- Description of the vulnerability
- Steps to reproduce the issue
- Potential impact
- Any suggested fixes (if applicable)
- We will acknowledge receipt of your vulnerability report within 48 hours.
- We will provide a detailed response about the next steps within 5 business days.
- We will keep you informed about our progress throughout the process.
- Once the vulnerability is fixed, we will notify you and publicly acknowledge your contribution (if desired).
- Security updates will be released as soon as possible after a vulnerability is confirmed.
- Updates will be distributed through our regular release channels.
- We will maintain a security advisory detailing the vulnerability and its fix.
| Version | Supported |
|---|---|
| 1.0.x | ✅ |
| < 1.0 | ❌ |
- Keep your dependencies up to date
- Use the latest stable version of the project
- Follow security best practices in your implementation
- Enable two-factor authentication if available
- Regularly review security advisories
Please ensure you follow these security-related configuration guidelines:
- Never commit sensitive credentials to version control
- Use environment variables for sensitive configuration
- Implement proper access controls
- Enable logging for security-relevant events
For any security-related questions, please contact us at fenil@fenilsonani.com.
This security policy is subject to change without notice. Please check back regularly for updates.