| Version | Supported |
|---|---|
| 2.x | ✅ |
| < 2.0 | ❌ |
If you discover a security vulnerability in doocs/md, please report it responsibly:
- Do not open a public GitHub issue for security-sensitive reports.
- Email the maintainers at security@doocs.org, or use GitHub Private Vulnerability Reporting if available.
- Include a clear description, steps to reproduce, and impact assessment when possible.
We aim to acknowledge reports within 3 business days and will work with you on a fix and coordinated disclosure timeline.
- Dependency updates and security fixes are tracked via Dependabot alerts.
- Published advisories appear on the Security tab.
Thank you for helping keep doocs/md and its users safe.