The main branch is actively maintained with security updates and bug fixes.
If you are using an older version or a personal fork, we strongly recommend syncing regularly with the latest upstream repository updates.
We take security issues seriously and appreciate responsible disclosure from the community.
Please do NOT report security vulnerabilities publicly through GitHub Issues.
If you discover a vulnerability:
- Report the issue privately to the project maintainer
- Include detailed reproduction steps
- Explain the potential impact
- Include screenshots or proof-of-concept if applicable
- Initial acknowledgment within 48 hours
- Verification and investigation process
- Security fix implementation
- Responsible disclosure coordination
- Resolution notification after patch deployment
Please avoid publicly sharing vulnerabilities until a fix has been released.
Responsible disclosure helps keep the project and community secure.
Thank you for helping improve the security and reliability of CricScope.