Projects

Security Policy

We take the security of our projects and players seriously.

Reporting a vulnerability

If you believe you have found a security issue that could affect our players, infrastructure, or data:

• Do not share details in public Issues or Discussions.
• Instead, please use one of the following options:
  • Use the security reporting tools on GitHub for this repository, or
  • Contact the maintainers using the security contact information listed in the repository description or organization profile.

When reporting, please include:

• A clear description of the issue and potential impact.
• Steps required to reproduce the problem.
• Any proof-of-concept code or logs (redact sensitive data).

Our commitment

• We will acknowledge receipt of your report as soon as we reasonably can.
• We will investigate and work on a fix or mitigation where appropriate.
• We may coordinate an appropriate disclosure timeline with you.

Thank you for helping keep our players and projects safe.