If you discover a security vulnerability in tsbridge, please report it through GitHub's Security tab:
- Go to the Security tab of this repository
- Click on "Report a vulnerability"
- Provide a detailed description of the vulnerability
- Include steps to reproduce if possible
I will try to acknowledge receipt within 48 hours and aim to provide an initial assessment.
tsbridge is designed for use in relatively trusted environments. Please review our THREAT_MODEL.md for a comprehensive analysis of:
- Intended use cases and environments
- Trust boundaries and security model
- Known security considerations
- Best practices for secure deployment
This project is primarily intended for:
- Home labs and personal use
- Development environments
- Small team internal networks
It is not designed for security-critical production environments or public-facing services.
Security fixes will be released as patch versions as soon as possible after verification. Watch this repository or check releases regularly to stay updated.