We are actively maintaining the following versions:
| Version | Supported |
|---|---|
| latest | 0.1.1 |
Older versions may not receive security updates. Please always use the latest version.
If you discover a security vulnerability in this project, please do not create a public issue. Instead, follow the steps below:
- Email us directly
- Include a detailed description of the vulnerability.
- If possible, provide a proof of concept or steps to reproduce.
- We will acknowledge receipt within 48 hours and aim to investigate and resolve all issues promptly.
- We follow a coordinated disclosure approach.
- Vulnerabilities will only be publicly disclosed after a fix has been released and affected users have been informed.
If you're contributing code, please:
- Avoid introducing insecure libraries or APIs.
- Validate and sanitize all inputs.
- Keep dependencies up to date.
For major security announcements:
- Watch the repository
- Subscribe to releases
We follow responsible disclosure practices and request that you do too. We appreciate your help in keeping this project safe for everyone.
Thank you for helping make Annie more secure!