The following versions of UltimateHealth are currently supported with security updates:
| Version | Supported |
|---|---|
| main | β Yes |
To report a security vulnerability in UltimateHealth, please reach out via:
- π GitHub Private Security Advisory
- π€ Maintainer: SB2318
Please do not open a public GitHub issue for security vulnerabilities.
- A clear description of the vulnerability
- Steps to reproduce the issue
- Affected versions or components
- Potential impact assessment
- Any suggested fix (optional but appreciated)
| Action | Timeframe |
|---|---|
| Acknowledgement of report | Within 48 hours |
| Status update | Within 7 days |
| Patch / fix release | Within 30 days |
We follow a responsible disclosure policy:
- Please report vulnerabilities privately before any public disclosure
- We request an embargo period of 30 days to investigate and patch the issue
- After a fix is released, you are welcome to publish your findings
- We will credit reporters in the patch notes unless anonymity is requested
- We deeply appreciate the efforts of security researchers π