We take the security of My Notes seriously. If you believe you have found a security vulnerability, please report it to us privately using the procedure described below.
Only the latest stable version of My Notes receives security updates.
| Version | Supported |
|---|---|
| 1.x.x (Latest) | ✅ Yes |
| < 1.0.0 | ❌ No |
Please do not report security vulnerabilities via public GitHub issues.
Instead, please send a detailed security report via email to mario@example.com.
When reporting, please include:
- A description of the issue.
- A proof-of-concept (PoC) or steps to reproduce the vulnerability.
- The potential impact of the issue.
- Any potential mitigations or suggested fixes.
We will acknowledge receipt of your report within 48 hours and provide a timeline for resolution, usually aiming to address critical vulnerabilities within 7 days.
Once a fix has been developed, tested, and released, we will publish a security advisory and credit you for the discovery (unless you prefer to remain anonymous).