mirror of
https://github.com/superseriousbusiness/gotosocial.git
synced 2025-02-10 14:50:17 +00:00
a773768718
Bumps [github.com/SherClockHolmes/webpush-go](https://github.com/SherClockHolmes/webpush-go) from 1.3.0 to 1.4.0. - [Release notes](https://github.com/SherClockHolmes/webpush-go/releases) - [Commits](https://github.com/SherClockHolmes/webpush-go/compare/v1.3.0...v1.4.0) --- updated-dependencies: - dependency-name: github.com/SherClockHolmes/webpush-go dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
20 lines
875 B
Markdown
20 lines
875 B
Markdown
# Security Policy
|
|
|
|
## Supported Versions
|
|
|
|
As of February 2022 (and until this document is updated), the latest version `v4` is supported.
|
|
|
|
## Reporting a Vulnerability
|
|
|
|
If you think you found a vulnerability, and even if you are not sure, please report it to jwt-go-security@googlegroups.com or one of the other [golang-jwt maintainers](https://github.com/orgs/golang-jwt/people). Please try be explicit, describe steps to reproduce the security issue with code example(s).
|
|
|
|
You will receive a response within a timely manner. If the issue is confirmed, we will do our best to release a patch as soon as possible given the complexity of the problem.
|
|
|
|
## Public Discussions
|
|
|
|
Please avoid publicly discussing a potential security vulnerability.
|
|
|
|
Let's take this offline and find a solution first, this limits the potential impact as much as possible.
|
|
|
|
We appreciate your help!
|