The following versions of the Angular RSocket Service Library are currently being supported with security updates:
| Version | Supported |
|---|---|
| 0.x.x | ✅ |
If you discover a security vulnerability in the Angular RSocket Service Library, please report it as soon as possible. We appreciate your efforts to responsibly disclose the issue, and we will do our best to address it promptly.
- Do not open a public issue for the vulnerability.
- Join my slack channel by using this link: Join Slack Channel, and send me a direct message with the following information:
- Please include as much detail as possible about the vulnerability.
- Attach any relevant details such as:
- Steps to reproduce the vulnerability.
- Potential impacts of the vulnerability.
- If applicable, patches or fixes.
- We will acknowledge receipt of your message and begin investigating the issue.
- Once the issue is confirmed, we will take steps to address it, including:
- Patching the vulnerability.
- Coordinating disclosure with relevant parties.
- Issuing a new release with the fix.
- We aim to respond to vulnerability reports within 48 hours.
- If confirmed, we will aim to release a patch as quickly as possible, depending on the severity of the issue.
We kindly ask that you:
- Give us a reasonable time to fix the vulnerability before publicly disclosing it.
- Do not exploit the vulnerability for personal gain or malicious purposes.
- Keep communications private until the issue is fully resolved.
Thank you for helping to keep the Angular RSocket Service Library safe and secure!