We currently support the following versions of ContextForge Memory:
| Version | Supported |
|---|---|
| 0.x.x | ✅ |
We take security vulnerabilities seriously. If you discover a security vulnerability in ContextForge Memory, please report it to us as described below.
Please do not report security vulnerabilities through public GitHub issues.
Instead, please report them via email to: [email protected]
When reporting a vulnerability, please include:
- A description of the vulnerability
- Steps to reproduce the issue
- Potential impact of the vulnerability
- Any suggested fixes or mitigations (if you have them)
- We will acknowledge receipt of your report within 48 hours
- We will provide regular updates on our progress
- We will notify you when the vulnerability has been fixed
Security updates will be released as patch versions (e.g., 0.1.1) and will be announced in the project's release notes.
When using ContextForge Memory:
- Always use the latest version
- Keep your dependencies up to date
- Be cautious with sensitive data in memory items
- Use appropriate namespace and project_id filtering
- Regularly review stored data for sensitive information
We appreciate the security research community's efforts to help keep our software secure. We will acknowledge security researchers who responsibly disclose vulnerabilities to us.