If you discover a security issue in this project, please report it responsibly:
- Do not open a public GitHub issue.
- Instead, email us at security@heygaia.io.
- Please include:
- A clear description of the vulnerability
- Steps to reproduce (if available)
- Any proof-of-concept code or details
We will acknowledge your report within 48 hours and keep you informed as we investigate and fix the issue.
- We follow a coordinated disclosure process.
- Once a fix is ready, we will:
- Release a patch
- Update documentation if necessary
- Credit the reporter (unless you prefer otherwise)
We currently support security updates for the following versions:
| Version | Supported |
|---|---|
| latest | ✅ |
| older | ❌ |
We prefer vulnerability reports in English, but will make reasonable efforts to work with any reporter.