Git Secrets Scanner is currently in its initial release phase. The following versions are currently being supported with security updates.

As a security-focused tool, the security of Git Secrets Scanner itself is a top priority.

If you discover a security vulnerability within this project, please report it by opening a private security advisory through GitHub under the "Security" tab of the repository, or by contacting the repository maintainers directly.

Please do NOT report security vulnerabilities via public GitHub issues.

What to expect:

• We will endeavor to acknowledge receipt of your vulnerability report within 48 hours.
• We will provide regular updates on the status of the fix.
• If the vulnerability is accepted, we will work on a patch and release it as quickly as possible, giving you credit for the discovery if desired.
• In the event a vulnerability report is declined, we will provide a detailed explanation.

Thank you for helping keep this project safe!