Skip to content

Security: teofanis/composite-fetcher

SECURITY.md

Security Policy for Composite Fetcher

Supported Versions

The following versions of Composite Fetcher are currently being supported with security updates:

Version Supported
1.x.x

Note: As the repository evolves, this table will be updated to reflect the supported versions.

Reporting a Vulnerability

We take the security of Composite Fetcher seriously. If you believe you've discovered a security vulnerability within the project, please follow the guidelines below:

  1. Do Not Disclose Publicly: Please refrain from discussing any vulnerabilities in public forums, issue trackers, or social media. This helps ensure that the vulnerability is not exploited before we have a chance to address it.

  2. Contact Us Directly: Send a detailed description of the vulnerability to [email protected]. Please provide as much information as possible to help us understand the nature and scope of the potential issue.

  3. Expect a Timely Response: We will acknowledge your email within 48 hours and will provide a more detailed response after investigating the issue. We appreciate your patience as we work to verify and address the vulnerability.

  4. Disclosure Timing: Once the vulnerability has been resolved, we will work with you to determine an appropriate disclosure timeline. We value the security community and recognize the importance of contributions from external researchers.

Thank you for your commitment to the security of the Composite Fetcher project and its users. Your efforts are greatly appreciated!

There aren’t any published security advisories