We release patches for security vulnerabilities for the following versions:
| Version | Supported |
|---|---|
| 1.x.x | ✅ |
We take the security of Trdo seriously. If you believe you have found a security vulnerability, please report it to us as described below.
- Open a public GitHub issue for the vulnerability
- Attempt to access data that doesn't belong to you
- Perform testing that could harm users or the application
- Email your findings to the maintainer (contact info on GitHub profile)
- Include as much information as possible:
- Type of vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix (if any)
- Acknowledgment of your report within 48 hours
- Regular updates on our progress
- Credit for the discovery (if desired) when the issue is resolved
When we learn of a security issue, we will:
- Confirm the problem and determine affected versions
- Audit code to find similar problems
- Prepare fixes for all supported versions
- Release new versions as soon as possible
Thank you for helping keep Trdo and its users safe!