We actively support the following versions with security updates:

If you discover a security vulnerability in NeoArch, please report it to us as soon as possible. We take security seriously and will respond promptly.

Please do NOT report security vulnerabilities through public GitHub issues.

Instead, please report security vulnerabilities by emailing: dsanjaya712@gmail.com

Include the following information in your report:

• A clear description of the vulnerability
• Steps to reproduce the issue
• Potential impact and severity
• Any suggested fixes or mitigations
• Your contact information (optional)

1. Acknowledgment: We will acknowledge receipt of your report within 48 hours
2. Investigation: We will investigate the issue and determine its validity
3. Updates: We will keep you informed about our progress
4. Resolution: We will work to fix the vulnerability and release a security update
5. Disclosure: We will coordinate disclosure timing with you

We kindly ask that you:

• Give us reasonable time to fix the issue before public disclosure
• Avoid accessing or modifying user data without permission
• Keep the vulnerability confidential until we've released a fix

Security updates will be:

• Released as soon as possible
• Clearly marked as security fixes
• Documented in release notes
• Communicated through our channels

We appreciate security researchers who help keep NeoArch safe. With your permission, we may acknowledge your contribution in our release notes or security acknowledgments.

• Always download NeoArch from official sources
• Keep your system and dependencies updated
• Use strong authentication for package management
• Be cautious with third-party plugins

• Follow secure coding practices
• Validate all inputs
• Use safe subprocess calls
• Regularly audit dependencies
• Implement proper error handling

For security-related questions or concerns:

• Email: dsanjaya712@gmail.com
• PGP Key: Available upon request

Thank you for helping keep NeoArch secure!