The following versions of GoPilot are currently supported with security updates:
| Version | Supported |
|---|---|
| 1.2.1 | ⌛ |
| 1.2.0 | ✅ |
If you discover a security vulnerability in GoPilot, please report it responsibly. We take security issues seriously and appreciate your efforts to help us maintain a secure project.
To report a vulnerability:
- Contact: Email us at ssunbul.dev@gmail.com with a detailed description of the vulnerability.
- Details to Include:
- A clear description of the issue and its potential impact.
- Steps to reproduce the vulnerability, if possible.
- Any relevant logs, screenshots, or proof-of-concept code.
- Response Time: You can expect an initial response within 48 hours acknowledging receipt of your report.
- Updates: We will provide updates on the progress of the investigation at least every 7 days.
- Resolution:
- If the vulnerability is accepted, we will work to address it promptly and release a patch, crediting you (if desired) in the release notes.
- If the vulnerability is declined (e.g., not applicable or out of scope), we will provide a clear explanation for our decision.
Please refrain from disclosing the vulnerability publicly until we have had a chance to investigate and address it. For more information about GoPilot, visit https://github.com/SadikSunbul/gopilot or https://go-pilot.vercel.app/.