Thank you for helping keep Trendhora secure! This document outlines the guidelines for reporting security issues and best practices.
| Version | Supported |
|---|---|
| Latest | โ |
| Older Releases | โ |
Only the latest version of this project is currently being supported with security updates.
If you discover a security vulnerability, please DO NOT create a public GitHub issue.
Instead, follow these steps:
- Email the maintainer directly.
- Provide a detailed description of the vulnerability.
- Include steps to reproduce the issue or a proof-of-concept if possible.
โ We will acknowledge your report within 72 hours, investigate it thoroughly, and provide a timeline for the fix. Responsible disclosures may be publicly credited upon request.
We ask that you:
- Do not publicly disclose the issue until it has been resolved.
- Avoid testing vulnerabilities in a way that could disrupt services.
- Act in good faith and with respect for user data and privacy.
While using or contributing to this project, please:
- Avoid exposing sensitive data (e.g., API keys, credentials).
- Validate and sanitize all user inputs if youโre working on frontend/backend integrations.
- Keep your dependencies updated regularly.
We appreciate the communityโs support in improving the security of Trendhora. Thank you for acting responsibly and helping make open source better and safer for everyone.