Use this section to tell people about which versions of your project are currently being supported with security updates.
| Version | Supported |
|---|---|
| 1.0-betaX | ✅ |
| < 1.0 | ❌ |
The Namingo team takes the security of our software seriously. If you believe you have found a security vulnerability in any version of our software, we would like you to let us know right away. We will investigate all legitimate reports and do our best to quickly fix the problem.
Please follow these steps to report a vulnerability:
- Do not report security vulnerabilities through public GitHub issues.
- Instead, please email us directly at [email protected]. Provide a detailed description of the issue, including the following information:
- The version of the software that you are using
- A description of the vulnerability and how it can be reproduced
- The potential impact of the vulnerability
- We will respond to your report within 48 hours to acknowledge receipt of your report and to outline the next steps in handling your submission.
- After the initial reply to your report, the security team will endeavor to keep you informed of the progress being made towards a fix and full announcement. We may also ask for additional information or guidance.
When we receive a vulnerability report, our immediate priority is to confirm and fix the vulnerability. We ask that you do not publicly disclose the issue until we have had the chance to resolve it.
We aim to handle all security issues transparently after the initial assessment phase. Once the issue is resolved, we will release a security advisory detailing the vulnerability, our response, and acknowledgments to the reporters.
If you have suggestions on how this process could be improved, please submit a pull request or issue.
Thank you for helping to keep Namingo and its users safe.