Security Policy
Reporting a vulnerability
Section titled “Reporting a vulnerability”Please do not open a public issue for security problems.
Use GitHub’s private vulnerability reporting: https://github.com/Samehadar/orinuno/security/advisories/new
If you prefer email, contact the maintainer via https://lyutarevich.com/.
What to expect
Section titled “What to expect”This is a single-maintainer project, so response is best-effort:
- Acknowledgement within 7 days.
- Triage and a rough timeline within 14 days of acknowledgement.
- A fix shipped as soon as reasonable after that — the exact timing depends on severity and available time.
Supported versions
Section titled “Supported versions”Only the latest release on master receives security fixes. The project is
pre-1.0 and experimental; older tags are archived and will not be patched.