We strongly encourage responsible disclosure.
If you believe you’ve found a security vulnerability in this project, please do NOT open a public issue.
Instead, contact the maintainers privately:
- Email: si.development+github-security@wuerth-it.com
- Or via GitHub private security advisory (See GitHub's guide)
- You privately report the issue to us.
- We confirm the vulnerability, assess severity, and begin remediation.
- We may request additional information from you to reproduce or understand the issue.
- Once fixed, we will:
- Release a patch version
- Credit you (if you want)
- Publish a security advisory
We will not pursue legal action for good-faith security research that follows the guidelines above and does not:
- Exploit data
- Disrupt services
- Violate privacy or confidentiality
Thank you!