If you discover a security vulnerability, please report it via email to:
Please do NOT report security vulnerabilities through public GitHub issues.
Please include the following information in your report:
- Type of vulnerability (e.g., injection, authentication bypass, etc.)
- Affected SDK(s) and version(s)
- Step-by-step instructions to reproduce the issue
- Proof-of-concept or exploit code (if possible)
- Potential impact of the vulnerability
When using Typecast SDKs:
- Never commit API keys to version control
- Use environment variables for sensitive configuration
- Keep SDKs updated to the latest version
- Review dependencies regularly for known vulnerabilities