Security updates are provided for the latest version on the default branch.
Please do not report security vulnerabilities through public GitHub issues.
Instead, report them via one of the following channels:
- Email:
security@nametag.one
When reporting, please include:
- A description of the vulnerability and its impact
- Steps to reproduce (proof-of-concept if available)
- Affected versions / commit hash (if known)
- Any suggested mitigations or fixes
After receiving a report, we aim to:
- Acknowledge receipt within 72 hours
- Provide an initial assessment and next steps within 7 days
- Coordinate a fix and release, and provide credit if desired
Thanks for helping keep Nametag and its users safe.