We actively support the following versions with security updates:
| Version | Supported |
|---|---|
| 1.x.x | ✅ |
| < 1.0 | ❌ |
If you discover a security vulnerability in MythWeave Chronicles, please help us by reporting it responsibly.
Please do not report security vulnerabilities through public GitHub issues.
Instead, please report security vulnerabilities by emailing security@mythweave-chronicles.com or through our security advisory form if available.
When reporting a vulnerability, please include:
- A clear description of the vulnerability
- Steps to reproduce the issue
- Potential impact of the vulnerability
- Any suggested fixes or mitigations
- Acknowledgment: We will acknowledge receipt of your report within 48 hours
- Investigation: We will investigate the issue and determine its validity
- Updates: We will provide regular updates on our progress
- Resolution: Once resolved, we will notify you and publicly disclose the issue
- We follow responsible disclosure practices
- We will credit researchers for valid security reports (unless they prefer anonymity)
- We aim to resolve critical security issues within 90 days
- We will not pursue legal action against researchers who report vulnerabilities in good faith
When using MythWeave Chronicles:
- Keep dependencies updated
- Use strong, unique passwords
- Store sensitive data securely
- Regularly backup your lore data
- Monitor for suspicious activity
For security-related questions or concerns, contact us at security@mythweave-chronicles.com.