Skip to content

Latest commit

 

History

History
23 lines (14 loc) · 1.18 KB

File metadata and controls

23 lines (14 loc) · 1.18 KB

Security Policy

Supported Versions

Version Supported
main

Reporting a Vulnerability

This project is a static documentation site built with VitePress. It does not run a backend service or process untrusted user input on a server.

If you discover a security issue in this repository (for example, a dependency vulnerability, leaked secret, or unsafe workflow configuration), please report it responsibly:

  1. Do not open a public GitHub issue for security-sensitive reports.
  2. Email the maintainers at szuyanglb@outlook.com with a description of the issue, steps to reproduce, and potential impact.
  3. You can also use GitHub Private Vulnerability Reporting if enabled for this repository.

We aim to acknowledge reports within 7 days and will coordinate a fix and disclosure timeline with you.

Dependency Security

Dependency updates and known vulnerability fixes are tracked via Dependabot and pnpm audit. Pull requests that bump vulnerable transitive dependencies are welcome.