OpenStaff is actively supported on the latest main branch and the latest tagged release.
Please do not open a public issue for security vulnerabilities.
Use one of these channels instead:
- GitHub Security Advisories (preferred): open a private report in the repository Security tab.
- If Security Advisories is unavailable, open a private communication channel with the maintainers and include:
- affected version/commit
- reproduction steps
- impact assessment
- suggested mitigation (if available)
We will acknowledge receipt quickly, triage severity, and ship a fix as soon as possible.