We currently support the following versions of the project with security updates:

1. Do Not publicly disclose the vulnerability until it has been addressed.

2. Email Security Reports:

   • Send details to: [email protected]
   • Include a descriptive subject line, e.g. "Security Vulnerability in throttle-proxy"

3. What to Include in Your Report:

   • Description of the vulnerability
   • Potential impact
   • Steps to reproduce
   • Suggested remediation (if known)

• Always validate and sanitize inputs
• Use the principle of least privilege
• Keep dependencies updated
• Follow OWASP security recommendations

• We take security seriously
• We will respond promptly to reported issues
• We aim to provide patches within 30 days of confirmation

Last Updated: December 2024