Skip to content

Security: saabi/world-lab

SECURITY.md

Security Policy

World Lab is pre-1.0. No packages are published to npm yet, and the deployed apps are content/authoring tools (a planet renderer and a shader/graph editor) with no user accounts or server-side data of consequence — but please report security issues responsibly rather than filing a public issue.

Reporting a vulnerability

Please use GitHub's private vulnerability reporting for this repository (Security tab → "Report a vulnerability") rather than opening a public issue or PR. If that's unavailable, open a regular issue asking for a private contact channel and avoid including exploit details until one is established.

Supported versions

Pre-1.0 — only the main branch is supported. There is no published-package version matrix yet (see ROADMAP.md and .changeset/).

There aren't any published security advisories