We aim to support the latest released version of dbfuse-ai and the most recent minor versions.
| Version | Supported |
|---|---|
| Latest (N) | ✅ Fully supported |
| N-1 | |
| Older | ❌ Not supported |
If you believe you’ve found a security vulnerability in dbfuse-ai, please do not open a public issue.
Instead, contact us privately at:
- Email: security@your-domain.com (or your personal dev email for now)
- Or via GitHub Security Advisories: https://github.com/kshashikumar/dbfuse-ai/security/advisories
Please include as much detail as possible:
- Steps to reproduce
- A minimal proof-of-concept if available
- Affected version / commit
- Any potential impact you’ve identified
- We will acknowledge your report within 5 business days.
- We’ll work with you to:
- Understand the issue
- Confirm the impact
- Identify a fix
- Once a fix is ready, we will:
- Release a patched version
- Publish a security advisory with credits (if you want)
- We aim to resolve critical issues within 30 days of confirmation whenever possible.
We greatly appreciate responsible disclosure and will credit researchers who help keep dbfuse-ai secure.