The project follows semantic versioning. Security updates are provided for the latest stable major version.
| Version | Supported |
|---|---|
| 2.x.x | ✅ |
| < 2.0 | ❌ |
Please do not open a public issue for security reports.
Instead, email: security@phillip-thiele.de
Include:
- A clear description of the issue and impact.
- Steps to reproduce (proof-of-concept if possible).
- Affected versions and environment details.
- Any known mitigations or workarounds.
We will acknowledge your report within 72 hours and provide a status update within 7 days. We will coordinate a fix and release timeline with you as needed.
We prefer coordinated disclosure. Please allow a reasonable time for fixes before public disclosure.