We actively support the following versions of this package:
| Version | Supported |
|---|---|
| 1.x | ✅ |
| < 1.0 | ❌ |
We take security vulnerabilities seriously. If you discover a security vulnerability within this package, please send an email to security@devuni.cz. All security vulnerabilities will be promptly addressed.
- A clear description of the vulnerability
- Steps to reproduce the issue
- Possible impact of the vulnerability
- Any suggested fixes (if you have them)
- We will acknowledge receipt of your vulnerability report within 24 hours
- We will provide a detailed response within 72 hours indicating the next steps
- We will keep you informed of the progress towards a fix
- We will notify you when the vulnerability is fixed
- Please do not publicly disclose the vulnerability until we have had a chance to address it
- We will credit you in our security advisory (unless you prefer to remain anonymous)
- We may offer a bounty for significant vulnerabilities (case by case basis)
When using this package:
- Always use the latest version
- Keep your Laravel framework up to date
- Validate and sanitize all input data
- Use environment variables for sensitive configuration
- Regularly audit your dependencies
Thank you for helping to keep our package secure!