Skip to content

Security: axrxvm/aos

SECURITY.md

Security Policy

Supported Versions

The project is actively maintained on the default branch and latest release line.

Version Supported
main
0.9.x
0.8.x
>0.7

Reporting a Vulnerability

Please report potential vulnerabilities privately using one of these channels:

  1. GitHub Private Vulnerability Reporting
  2. Email
    • Send details to axrxvm@proton.me.

Do not open public GitHub issues for security problems.

When reporting, include:

  • affected version/commit
  • impact and attack scenario
  • reproduction steps or proof of concept
  • any proposed mitigation

Response Process

  • Initial acknowledgement target: within 72 hours.
  • Triage and status updates are provided as fixes are prepared.
  • We aim for coordinated disclosure after a patch or mitigation is available.

Disclosure and Credit

If you want to be credited, include your preferred name/handle in the report. Anonymous reports are also accepted.

There aren't any published security advisories