We actively provide security updates for the following versions of DorkEye:
| Version | Supported |
|---|---|
| 1.x | ✅ |
| < 1.0 | ❌ |
Please do not report security vulnerabilities through public GitHub issues.
If you discover a potential security jump or vulnerability within DorkEye, we want to fix it as soon as possible. Please report it privately by following these steps:
- Email us: Send a detailed report to [IL TUO INDIRIZZO EMAIL QUI].
- Describe the bug: Include steps to reproduce, the potential impact, and any proof-of-concept (PoC) code.
- Response time: We will acknowledge your report within 48-72 hours and provide a timeline for a fix.
- Remote Code Execution (RCE) in the tool's logic.
- Unintended exposure of sensitive user data or API keys.
- Vulnerabilities in third-party dependencies used by DorkEye.
We follow a coordinated disclosure policy. Please give us a reasonable amount of time to fix the issue before making any information public.
Thank you for helping keep the DorkEye community safe!