Please do not report security vulnerabilities through public GitHub issues, discussions, or pull requests.
Instead, use one of the following private channels:
- GitHub Private Vulnerability Reporting (preferred) — go to the Security tab of this repository and click Report a vulnerability.
- Email —
opensource@solotopiax.com
Please include where possible:
- A description of the vulnerability and its potential impact
- Steps to reproduce
- Affected version and platform
We will acknowledge your report as soon as possible and keep you informed of the progress toward a fix. Please give us a reasonable time to address the issue before any public disclosure.
Security fixes are provided for the latest released version on the default branch.
请勿通过公开的 GitHub issue、discussion 或 pull request 报告安全漏洞。
请改用以下私密渠道之一:
- GitHub 私有漏洞报告(推荐) —— 进入本仓库的 Security 标签页,点击 Report a vulnerability。
- 邮件 ——
opensource@solotopiax.com
请尽量包含:
- 漏洞描述及潜在影响
- 复现步骤
- 受影响的版本与平台
我们会尽快确认你的报告,并同步修复进展。在问题修复前,请给我们合理的处理时间, 再进行任何公开披露。
安全修复针对默认分支上最新发布的版本提供。