We currently support the following versions of the project with security updates:
| Version | Supported |
|---|---|
| 0.1.x | ✅ |
| < 0.1.0 | ❌ |
-
Do Not publicly disclose the vulnerability until it has been addressed.
-
Email Security Reports:
- Send details to: [email protected]
- Include a descriptive subject line, e.g. "Security Vulnerability in throttle-proxy"
-
What to Include in Your Report:
- Description of the vulnerability
- Potential impact
- Steps to reproduce
- Suggested remediation (if known)
- Always validate and sanitize inputs
- Use the principle of least privilege
- Keep dependencies updated
- Follow OWASP security recommendations
- We take security seriously
- We will respond promptly to reported issues
- We aim to provide patches within 30 days of confirmation
Last Updated: December 2024