If you discover a security vulnerability in djehuty, please report it privately by emailing djehuty@4tu.nl.
Please do not open a public issue for security vulnerabilities.
- Description of the vulnerability
- Steps to reproduce
- Affected version(s)
- Potential impact, if known
- Acknowledgment within 48 hours of your report.
- A follow-up with our assessment and an estimated timeline for a fix within 7 business days.
- Credit in the advisory, unless you prefer to remain anonymous.
| Version | Supported |
|---|---|
| Latest | Yes |
We follow coordinated vulnerability disclosure. After a fix is available, we will:
- Release a patched version.
- Publish a GitHub Security Advisory with details and remediation steps.
- Request a CVE identifier when appropriate.
We aim to resolve confirmed vulnerabilities within 90 days of the initial report.