Currently, only the main branch (main) is actively supported with security updates.
| Version | Supported |
|---|---|
| v1.0.x | ✅ |
| < v1.0 | ❌ |
We take the security of Citation Analyzer seriously. If you believe you have found a security vulnerability in this project, please report it to us as described below.
Please do not report security vulnerabilities through public GitHub issues.
Instead, please send an email to the project maintainers or open a restricted security advisory draft on GitHub.
You should receive a response within 48 hours. If for some reason you do not, please follow up via email to ensure we received your original message.
Please provide the following information when reporting a vulnerability:
- A description of the vulnerability and its impact.
- Steps to reproduce the vulnerability.
- Any potential mitigation or remediation strategies you are aware of.
- We will acknowledge receipt of your report.
- We will investigate the vulnerability and determine its severity.
- If the vulnerability is confirmed, we will develop a patch and release a new version of the affected software.
- We will publicly disclose the vulnerability and provide credit to the reporter (unless you request to remain anonymous).