Only the most recent version of the deployed application and the main branch of this repository are currently supported with security updates.
| Version | Supported |
|---|---|
| v1.0.x | ✅ |
| < v1.0 | ❌ |
We take the security of RAW.AI seriously. If you have discovered a security vulnerability, we appreciate your help in disclosing it to us in a responsible manner.
Please DO NOT create a public GitHub issue for security vulnerabilities.
Instead, please report the vulnerability by emailing arshverma.dev@gmail.com with the subject line [SECURITY] Vulnerability Report - RAW.AI.
In your report, please include:
- Type of Vulnerability: e.g., XSS, SQL Injection, Auth Bypass.
- Affected Component: The specific URL, component, or code snippet.
- Reproduction Steps: Detailed steps to reproduce the issue.
- Proof of Concept: A screenshot, video, or script demonstrating the vulnerability.
- Acknowledgement: We will acknowledge your report within 48 hours.
- Assessment: We will investigate the issue and determine its severity within 5 business days.
- Resolution: If confirmed, we will work on a patch and release it as soon as possible. We will keep you updated on the progress.
At this time, we do not offer a bug bounty program. However, we will happily credit you in our Release Notes and identifying you as a contributor to the security of our platform (unless you prefer to remain anonymous).
Thank you for helping keep RAW.AI safe! 🛡️