If you discover a security vulnerability in this project, please follow these steps:
- Email us at meduza-us@proton.me with details of the vulnerability.
- Provide as much information as possible, including:
- A description of the vulnerability
- Steps to reproduce
- Impact assessment (what can an attacker gain/do)
- Any suggested mitigation or fix
We aim to respond to security concerns within 72 hours and will work with you to quickly address any issues.
Responsible Disclosure:
Please do not disclose vulnerabilities publicly until we have had a chance to investigate and release a fix.
Thank you for helping keep this project and its users safe!