diff options
Diffstat (limited to 'vendor/github.com/golang-jwt/jwt/v5/SECURITY.md')
| -rw-r--r-- | vendor/github.com/golang-jwt/jwt/v5/SECURITY.md | 19 |
1 files changed, 19 insertions, 0 deletions
diff --git a/vendor/github.com/golang-jwt/jwt/v5/SECURITY.md b/vendor/github.com/golang-jwt/jwt/v5/SECURITY.md new file mode 100644 index 0000000..b08402c --- /dev/null +++ b/vendor/github.com/golang-jwt/jwt/v5/SECURITY.md | |||
| @@ -0,0 +1,19 @@ | |||
| 1 | # Security Policy | ||
| 2 | |||
| 3 | ## Supported Versions | ||
| 4 | |||
| 5 | As of February 2022 (and until this document is updated), the latest version `v4` is supported. | ||
| 6 | |||
| 7 | ## Reporting a Vulnerability | ||
| 8 | |||
| 9 | If you think you found a vulnerability, and even if you are not sure, please report it to [email protected] or one of the other [golang-jwt maintainers](https://github.com/orgs/golang-jwt/people). Please try be explicit, describe steps to reproduce the security issue with code example(s). | ||
| 10 | |||
| 11 | You will receive a response within a timely manner. If the issue is confirmed, we will do our best to release a patch as soon as possible given the complexity of the problem. | ||
| 12 | |||
| 13 | ## Public Discussions | ||
| 14 | |||
| 15 | Please avoid publicly discussing a potential security vulnerability. | ||
| 16 | |||
| 17 | Let's take this offline and find a solution first, this limits the potential impact as much as possible. | ||
| 18 | |||
| 19 | We appreciate your help! | ||