Skip to content

Security: woldann/exoproc

Security

SECURITY.md

Security Policy

Supported Versions

This is a monorepo of independently versioned packages (see each package's own CHANGELOG.md). Security fixes are provided for the latest published version of each package; older major versions are not backported.

Reporting a Vulnerability

We take the security of this project and the safety of our users seriously. If you discover a security vulnerability within Exoproc, please do not open a public issue. Instead, follow this process:

  1. Private Disclosure: Report the vulnerability by utilizing GitHub's Private Vulnerability Reporting feature in the repository settings (if enabled) or send an email to the lead maintainer.
  2. Details: Include a detailed description of the issue, steps to reproduce, a proof of concept (PoC), and the potential impact.

We will acknowledge your report within 48 hours and work with you to coordinate a security fix and public disclosure timeline.

Ethical Research

Exoproc is created for research, security auditing, and educational use. We expect all researchers to act in accordance with local regulations, seek appropriate authorizations, and practice responsible disclosure. Do not use this tool for unauthorized system access or unauthorized software modification.

There aren't any published security advisories