We support the latest released version of Unitility.
If you’re using an older version, we encourage upgrading before reporting vulnerabilities.
If you believe you have found a security vulnerability in Unitility, please report it privately and responsibly.
security [at] synerset [dot] com
(Replace [at] with @ and [dot] with .)
❗ Please do NOT open a public issue for security-related topics.
Please include:
- A clear description of the vulnerability
- Steps to reproduce it
- Any related stack traces or logs
- Impact (e.g. possible exploit, misuse, data leak)
We aim to respond within 72 hours.
If the issue is confirmed, we will coordinate a responsible disclosure and prepare a fix or mitigation plan.
Unitility is a free and open-source software project provided "as is", without warranty of any kind.
The author and contributors shall not be held liable for any damages or issues resulting from the use, misuse, or inability to use this library, including security vulnerabilities.
By using this library, you agree that you assume all risks associated with its usage in your application or system.
Thank you for helping keep Unitility secure!