We are committed to fixing security vulnerabilities in the latest major version of DebtDrone CLI.
| Version | Supported |
|---|---|
| 1.0.x | ✅ |
| < 1.0 | ❌ |
We take the security of debtdrone seriously. If you believe you have found a security vulnerability in this project, please report it to us immediately.
Please do not report security vulnerabilities through public GitHub issues.
If you discover a security issue, please adhere to the following:
- Do NOT open a public issue.
- Email our security team at lickollariendri@gmail.com.
- Provide as much detail as possible, including:
- The version of
debtdroneaffected. - Steps to reproduce the vulnerability.
- Sample code or a repository that triggers the issue.
- The version of
We will acknowledge your report within 48 hours and provide an estimated timeline for the fix.
- Triage: We aim to confirm the vulnerability within 3 days.
- Fix: We will work to patch the vulnerability in a private branch.
- Release: Once patched, we will release a new version (e.g.,
1.0.1) and publish a security advisory.
Thank you for helping keep the DebtDrone ecosystem secure.