MemPalace follows semantic versioning. Security fixes land on the current major version line.
| Version | Supported |
|---|---|
| 3.x (current) | Yes |
| 2.x and earlier | No |
Please do not report security vulnerabilities through public GitHub issues.
We take the security of MemPalace seriously. If you believe you have found a security vulnerability, please report it privately using GitHub Private Vulnerability Reporting:
- Open the Security tab of this repository.
- Click Advisories → Report a vulnerability.
- Fill in the form with the details below.
- A descriptive summary of the vulnerability.
- Detailed steps to reproduce the issue (including any proof-of-concept scripts or specific file paths).
- The affected version(s) and platform(s).
- The potential impact and severity.
- We aim to acknowledge receipt within 48 hours.
- We will triage the issue and keep you updated on progress toward a patch.
- Once the vulnerability is resolved and an update is released, we will publish a security advisory and credit you for the discovery (if you wish to be credited).