We currently support the following versions of WebUI with security updates:
| Version | Supported |
|---|---|
| 1.0.0 | ✅ |
We take security issues in WebUI seriously. We appreciate your efforts to responsibly disclose your findings and will make every effort to acknowledge and address valid security concerns promptly.
To report a security vulnerability:
- DO NOT create a public GitHub issue for the vulnerability.
- Email your findings to hello@maclong.uk.
- Include as much information as possible, including:
- A description of the vulnerability
- Steps to reproduce the issue
- Potential impact of the vulnerability
- Any proof-of-concept code if available
You can expect an initial response within 48 hours acknowledging receipt of your report. After the initial acknowledgment, we will keep you informed of the progress towards a fix and full announcement.
When we receive a security bug report, we will:
- Confirm the vulnerability and determine its affected versions
- Fix the issue as quickly as possible
- Announce the vulnerability and available fixes
- Credit the reporter if they wish to be identified
If you have suggestions on how this process could be improved, please submit a pull request or open an issue to discuss.