If you discover a security vulnerability in MCP-Forge-Python, please report it to us as follows:
GitHub provides a private vulnerability reporting feature for security issues. To report a vulnerability:
- Go to the Security tab in this repository
- Click "Report a vulnerability"
- Fill out the form with details about the vulnerability
- Submit the report
This will create a private issue that only maintainers can see and respond to.
When reporting a vulnerability, please include:
- A clear description of the vulnerability
- Steps to reproduce the issue
- Potential impact
- Any suggested fixes (optional)
We will acknowledge receipt of your report within 48 hours and provide a more detailed response within 7 days indicating our next steps.
We kindly ask that you:
- Give us reasonable time to fix the issue before public disclosure
- Avoid accessing user data or disrupting services
- Do not perform DoS attacks or spam our systems
Thank you for helping keep MCP-Forge-Python and its users secure!