The Very Good Ventures team takes the security of Very Good Templates and the projects generated from them seriously. This document describes which versions are supported and how to report a vulnerability.
Only the latest minor version of each template receives security updates. Older versions are not supported.
| Version | Supported |
|---|---|
| Latest minor release | ✅ |
| Older releases | ❌ |
If you discover a security vulnerability in any of the templates contained in this repository, please report it privately by opening a security advisory on GitHub.
Please do not open a public GitHub issue, pull request, or discussion for security reports.
When reporting a vulnerability, include as much of the following information as possible:
- A description of the issue and its potential impact.
- Steps to reproduce the issue.
- The template(s) and version(s) affected.
- Any suggested fixes or mitigations, if available.
We will acknowledge your report as soon as possible and work with you to investigate the issue and coordinate a fix and disclosure.