If you discover a security vulnerability in any Saturate project, please report it responsibly.
Do not open a public GitHub issue.
Instead, email security@akj.io with:
- A description of the vulnerability
- Steps to reproduce
- The affected project and version
- Any potential impact
I will acknowledge receipt within 48 hours and aim to provide a fix or mitigation within 7 days for critical issues.
Only the latest release of each project receives security updates. I recommend staying up to date.
This policy covers all repositories under the Saturate organization.