Use this section to inform users about which versions of MonkeyBytes-API are currently being supported with security updates.
| Version | Supported |
|---|---|
| 20.x | ✅ |
| 18.x | ✅ |
| 16.x | ❌ |
| <16.x | ❌ |
We take security vulnerabilities seriously and appreciate your help in keeping MonkeyBytes-API secure. If you discover a security vulnerability, please follow these guidelines to report it responsibly.
-
Use GitHub Security Advisories
Please report vulnerabilities by creating a security advisory in our GitHub repository. Follow these steps:
-
Navigate to the Security Tab
Go to the Security section of the repository.
-
Click on "New Security Advisory"
Press the "New security advisory" button to begin.
-
Provide a Descriptive Title and Detailed Description
- Title: Briefly summarize the vulnerability.
- Description: Provide detailed information, including steps to reproduce the issue, expected behavior, and any relevant screenshots or logs.
-
-
Confidentiality
Please refrain from disclosing the vulnerability publicly until we have had sufficient time to address it. This helps protect our users and maintain the security of the API.
-
Acknowledgment and Updates
Upon receiving your report, we will acknowledge receipt within 48 hours and keep you informed about the progress of our investigation and resolution. We aim to respond to all vulnerability reports promptly and responsibly.
-
Non-Retaliation
We value your contribution to enhancing the security of MonkeyBytes-API. We do not tolerate any form of retaliation against individuals who report vulnerabilities in good faith.
By following these guidelines, you help us maintain a secure and reliable service for all users of MonkeyBytes-API. Thank you for your cooperation and support.