If you discover a security vulnerability in Bengal STM, please report it responsibly.
Please do not report security vulnerabilities through public GitHub issues.
Instead, please send an email to greg.vonnessi@entrolution.ai describing the vulnerability. You should receive a response within 48 hours acknowledging receipt of your report.
Please include the following information in your report:
- Type of vulnerability
- Full paths of source file(s) related to the vulnerability
- Location of the affected source code (tag/branch/commit or direct URL)
- Step-by-step instructions to reproduce the issue
- Proof-of-concept or exploit code (if possible)
- Impact of the issue, including how an attacker might exploit it
| Version | Supported |
|---|---|
| 0.13.x | Yes |
| < 0.13 | No |
Security updates will be released as patch versions and announced through GitHub releases.