Thank you for taking the time to help make T-Insights more secure.
We appreciate responsible disclosures of vulnerabilities and are committed to promptly addressing any security issues.
We release security updates only for actively maintained repositories and branches.
If you're unsure whether a repository is actively maintained, please contact us before disclosing any issue.
If you discover a security vulnerability, please DO NOT open a public issue or pull request.
Instead, contact us privately via email:
Please include as much detail as possible to help us investigate quickly:
- A clear description of the vulnerability
- Steps to reproduce the issue
- Affected components and potential impact
- Suggested fixes or mitigation steps (if available)
We aim to respond within 72 hours and will address the issue promptly based on its severity.
- Report issues privately and confidentially
- Please do not disclose details publicly until we have resolved the issue
- We may acknowledge your contribution publicly (with your permission)
- We value and respect all good-faith reports
Please do not report:
- Automated scanner output without proof-of-concept
- Social engineering, phishing, or physical security issues
- Vulnerabilities in third-party dependencies (unless exploitable via our code)
Your efforts help us keep the T-Insights community safe, secure, and trusted by all.
🛡️ Made with care by the T-Insights maintainers