Currently, the following versions are receiving security updates:

Security is a top priority for the 01cloud team. We welcome contributions from the security research community who can help us improve the security of our products.

If you have discovered a security vulnerability in this project, please report it to us privately via email at info@01cloud.com.

Please DO NOT create a public GitHub issue or pull request for security vulnerabilities.

To help us triage and resolve the issue quickly, please include the following details in your report:

• A clear description of the vulnerability and its potential impact.
• Steps to reproduce the issue (including any necessary configuration or code snippets).
• The version(s) of the software affected.
• Any potential workarounds or mitigation strategies you are aware of.

We aim to adhere to the following response timeline:

• Acknowledgment: Within 48 hours of your report, we will acknowledge receipt.
• Triage: Within 5 business days, we will confirm the vulnerability, ask for more details, or explain why we do not consider it a vulnerability.
• Resolution: We strive to address critical vulnerabilities as quickly as possible, typically within 14 days. Non-critical issues will be scheduled for a subsequent release.

Once a vulnerability has been resolved and a patch has been released, we may publish a security advisory. We will coordinate with the researcher who reported the issue to ensure they receive appropriate credit, unless they prefer to remain anonymous.