The Nyrve team takes the security of our software seriously.

Please do not report security vulnerabilities through public GitHub issues.

Instead, please report security vulnerabilities by emailing the maintainers or by opening a private security advisory on GitHub.

Please include the following information in your report:

• Type of issue (e.g., buffer overflow, code injection, etc.)
• Full paths of source file(s) related to the issue
• The location of the affected source code (tag/branch/commit or direct URL)
• Any special configuration required to reproduce the issue
• Step-by-step instructions to reproduce the issue
• Proof-of-concept or exploit code (if possible)
• Impact of the issue, including how an attacker might exploit it

We will acknowledge receipt of your vulnerability report and send you regular updates about our progress.

Nyrve is a fork of VS Code. For security issues in upstream VS Code components (code under src/vs/), please also consider reporting to Microsoft per their security policy.