Skip to content

Security: meigma/authkit

Security

Report a vulnerability

SECURITY.md

Security Policy

This document explains which versions of authkit receive security updates and how to report vulnerabilities privately.

Supported Versions

authkit has not published a stable release yet. Until tagged releases exist, security fixes are handled on the default branch.

Reporting a Vulnerability

Report vulnerabilities privately through GitHub private vulnerability reporting:

https://github.com/meigma/authkit/security/advisories/new

Do not use public GitHub issues, pull requests, discussions, chat channels, or other public forums for vulnerability reports.

When reporting a vulnerability, include as much of the following as possible:

  • affected version, commit, or deployment identifier
  • a description of the issue and the security impact
  • steps to reproduce or a minimal proof of concept
  • any relevant logs, screenshots, or traces
  • any suggested mitigations or fixes, if available

There aren't any published security advisories