Skip to content

prajasus2308/snake-game

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
.github/workflows
.github/workflows
 
 
config.js
config.js
 
 
index.html
index.html
 
 
logger.js
logger.js
 
 
main.js
main.js
 
 
secureAuth.js
secureAuth.js
 
 
security.md
security.md
 
 
style.css
style.css
 
 

Repository files navigation

Security Policy

Supported Versions

We release patches for security vulnerabilities in the following versions:

Version Supported
1.0.1
< 1.0.1

Reporting a Vulnerability

If you discover a vulnerability in the Snake Game project:

  • Please do not open a public issue.
  • Instead, email the maintainer at: security@example.com
  • Include a description of the vulnerability, steps to reproduce, and potential impact.
  • You will receive a response within 72 hours.

Known Vulnerabilities

Unrestricted Keyboard Input (Fixed in v1.0.1)

  • Impact: Allowed disruptive system-level keys (F5, Alt, Ctrl) to interfere with gameplay.
  • Severity: Low
  • Patched in: v1.0.1
  • Workaround: Filter non-arrow keys and use event.preventDefault().

Security Best Practices

  • Always run the latest version (>= 1.0.1).
  • Avoid modifying core input handling unless you reapply sanitization.
  • Deploy over HTTPS if embedding the game in a website.
  • Use CSP headers (default-src 'self') when hosting.

Credits

  • Vulnerability reported by Ravi (Pratyush Raj), student web developer.

About

https://prajasus2308.github.io/snake-game/index.html

prajasus2308.github.io/snake-game/index.html

Security policy

Security policy
Activity

Stars

2 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors 1

Languages