| Version | Supported |
|---|---|
| Latest (main branch) | ✅ |
| Older versions | ❌ |
This project follows continuous deployment. Only the latest version on the main branch receives security updates.
We take security seriously. If you discover a security vulnerability, please report it responsibly.
Please DO NOT create public GitHub issues for security vulnerabilities.
- Email: info@wendermedia.com
- Subject:
[SECURITY] Brief description of the issue
- Description of the vulnerability
- Steps to reproduce the issue
- Potential impact assessment
- Suggested fix (if applicable)
| Timeframe | Action |
|---|---|
| 48 hours | Initial acknowledgment |
| 7 days | Assessment and severity classification |
| 14 days | Fix for critical/high issues |
| 30 days | Fix for medium/low issues |
- We follow responsible disclosure
- Please allow reasonable time to fix issues before public disclosure
- We will credit you in our security acknowledgments (if desired)
- HTTPS enforced via hosting provider
- Security headers configured (X-Frame-Options, X-Content-Type-Options, Referrer-Policy)
- No third-party tracking or analytics
- Regular dependency updates and vulnerability scanning
- No secrets or credentials committed to the repository
We monitor dependencies for known vulnerabilities:
- GitHub Dependabot alerts
npm auditduring development- Regular dependency updates
Email: info@wendermedia.com Website: https://www.wendermedia.com
Last Updated: April 2026