This project follows a simple support policy for security updates:

Note: The version numbers above reflect the current published extension versions. Update this table as releases progress.

If you discover a security vulnerability in Dev Toolkit, please report it privately so that we can address it responsibly.

• Open an email to sidkr222003@gmail.com with the subject Dev Toolkit Security Issue
• Include:
  • a clear description of the vulnerability
  • steps to reproduce
  • affected versions
  • any proof-of-concept code or screenshots

• We will acknowledge receipt within 48 hours.
• We will provide an initial update within 7 days.
• If the report is accepted, we will work to fix the issue and publish a patch or new release.
• If the vulnerability is declined, we will explain why.

Please do not post security issues publicly until a fix is available.

If email is not available, open a private issue in the GitHub repository and mark it as confidential, or contact the repository maintainers directly through GitHub.

• Keep your VS Code extension and dependencies up to date.
• Do not install untrusted packages or extensions from unknown sources.
• Report suspicious behavior immediately.