| Version | Supported |
|---|---|
| A-1.x.x | ✅ |
| U-A-1.x.x | ❎ |
We take the security of Guified seriously. If you have discovered a security vulnerability in our project, please follow these steps to report it:
- 🤫 Do Not disclose the vulnerability publicly until it has been addressed by our team.
- 📧 Email your findings to [email protected]. Encrypt your email using our PGP key to ensure the confidentiality of the report.
- 📝 Provide a detailed description of the vulnerability, including:
- The version of Guified affected
- Steps to reproduce the issue
- Potential impact of the vulnerability
- Any possible mitigations or workarounds
- ✅ We will acknowledge receipt of your vulnerability report within 3 business days.
- 📅 We will provide an estimated timeline for addressing the vulnerability within 7 business days.
- 📊 We will keep you informed about the progress of fixing the vulnerability.
- 🎉 Once the vulnerability is fixed, we will publicly acknowledge your responsible disclosure, unless you prefer to remain anonymous.
This security policy applies to the latest stable release of Guified. Please ensure you are using the most recent version before reporting security issues.
We support safe harbor for security researchers who:
- 🔒 Make a good faith effort to avoid privacy violations, destruction of data, and interruption or degradation of our services.
- 👤 Only interact with accounts you own or with explicit permission of the account holder.
- 🚫 Do not exploit a security issue you discover for any reason other than reporting it to us.
- 🚧 Guified is currently in early development. While we strive to maintain security, please be aware that rapid changes may occur.
- 💻 As mentioned in the README, there are currently no plans to support MacOS, and some features using FFI are not supported on Linux.
Thank you for helping to keep Guified and its users safe! 🙏