File tree Expand file tree Collapse file tree 1 file changed +38
-0
lines changed Expand file tree Collapse file tree 1 file changed +38
-0
lines changed Original file line number Diff line number Diff line change 1+ # Security Policy
2+
3+ ## 📬 Reporting a Vulnerability
4+
5+ If you discover a security vulnerability within this package, ** please do not disclose it publicly** . Instead, report it
6+ directly and confidentially via:
7+
8+ 9+ - GitHub Security Advisory: [ Submit here] ( https://github.com/N3XT0R/laravel-migration-generator/security/advisories/new )
10+
11+ We aim to respond to all valid reports within ** 72 hours** and will coordinate disclosure responsibly.
12+
13+ ## 🔒 Supported Versions
14+
15+ | Version | Status | Notes |
16+ | ---------| ---------------| ---------------------------|
17+ | 8.x | ✅ Supported | Actively maintained |
18+ | < 8.0 | ❌ Unsupported | Legacy, no security fixes |
19+
20+ If you're using an unsupported version, we strongly recommend upgrading to the latest stable release.
21+
22+ ## 🧪 Security Considerations
23+
24+ This package performs introspection on database schemas and writes files to disk. As such, you should:
25+
26+ - Avoid using it with untrusted or manipulated database schemas.
27+ - Run generators only in trusted development environments.
28+ - Always verify generated migrations and models before committing.
29+
30+ ## 🔐 Dependencies
31+
32+ Dependencies are managed via Composer and adhere
33+ to [ FriendsOfPHP/security-advisories] ( https://github.com/FriendsOfPHP/security-advisories ) via ` composer audit ` .
34+
35+ Use:
36+
37+ ``` bash
38+ composer audit
You can’t perform that action at this time.
0 commit comments