This project is maintained under the main branch. Critical security issues will be addressed in the latest commit on main. No other branches are actively maintained for security fixes at this time.
If you discover a security vulnerability in AnyWhere-ChatBot-Chatty, please report it responsibly:
- Email: Send an email to
mail@0xarchit.is-a.devwith the subject lineSecurity Vulnerability in AnyWhere-ChatBot-Chatty. - Include:
- A clear description of the vulnerability and its impact.
- Detailed steps to reproduce the issue.
- Any proof-of-concept code or screenshots.
- Timeline: Allow at least 7 days for a response. We will acknowledge receipt within 48 hours and work to provide a fix promptly.
- Initial Triage: We will assess the report and verify the vulnerability.
- Fix Development: A patch or mitigation will be developed in a private branch.
- Coordinated Release: We will coordinate with the reporter for public disclosure and CVE assignment as needed.
- Public Advisory: An advisory will be published in a
SECURITY_ADVISORY.mdlisting affected versions and fixes.
| Phase | Timeline |
|---|---|
| Report Acknowledged | Within 48 hours |
| Fix Proposed | Within 7 days |
| Public Release | Coordinated with reporter |
For sensitive matters or if email is not suitable, you can use PGP encryption with our public key (available upon request) or reach out through a secure channel by contacting mail@0xarchit.is-a.dev.
Last updated: August 22, 2025