Security Policy
Supported Versions
We provide security updates for the latest major version of Tughra. Please keep your installation up-to-date to ensure the latest security enhancements.
| Version |
Supported |
| 1.0.0 |
✅ |
Reporting a Vulnerability
If you discover a security vulnerability, please follow these steps:
- Do Not Report Publicly: To protect users, please do not disclose vulnerabilities publicly.
- Contact Us Privately: Report vulnerabilities by emailing us here. Include as many details as possible, including steps to reproduce the issue.
- Expected Response: We aim to acknowledge receipt within 72 hours and work to investigate and resolve the issue as quickly as possible. We may request further information or clarification during the investigation process.
Security Updates
We notify users of critical security updates by updating the repository and release notes. Always review release notes to stay informed of important changes and patches.
General Security Guidance
- Stay Updated: Regularly update your Tughra library to the latest version.
- Use Best Practices: Avoid hardcoding sensitive data and follow encryption best practices in implementation.
Thank you for helping us make Tughra a secure encryption library for everyone!