PARTHA is currently in active development.
Security fixes are provided for the latest development branch (dev) and the latest stable release on main.
| Version | Supported |
|---|---|
Latest dev |
✅ |
| Latest release | ✅ |
| Older releases | ❌ |
If you discover a security vulnerability in PARTHA, please do not create a public GitHub issue.
Instead, report it privately by emailing:
Include, where possible:
- A description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested remediation (if known)
We aim to:
- Acknowledge reports within 72 hours
- Investigate and validate the issue
- Develop and test a fix
- Publish a security patch when appropriate
- Credit the reporter (if they wish)
PARTHA uses several automated security measures, including:
- GitHub CodeQL static analysis
- Dependabot dependency monitoring
- GitHub Dependabot security advisories
- Required pull request reviews
- Protected branches
- Continuous Integration validation
Security is considered throughout development, but no software is guaranteed to be free of vulnerabilities. Responsible disclosure is appreciated.