AuthKit is currently under active development. Security fixes will be provided for the latest version.
| Version | Supported |
|---|---|
| Unreleased / Main | ✅ |
If you discover a security vulnerability within AuthKit, please report it responsibly.
Please do not open a public GitHub issue for security vulnerabilities.
Instead, contact:
Include the following information when possible:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested mitigation (if known)
We aim to acknowledge security reports within 48 hours and provide a resolution or mitigation timeline after review.
We appreciate responsible disclosure of security issues. Contributors who report valid vulnerabilities may be acknowledged in the project's release notes if they wish.