This is the security notice for this repository. The notice explains how vulnerabilities should be reported.

If you've found a vulnerability, we would like to know so we can fix it before it is released publicly, please Open a draft security advisory.

The following vulnerabilities are not in scope:

• Volumetric vulnerabilities, for example overwhelming a service with a high volume of requests

If you aren't sure, you can still reach out via email or direct message.

This notice is inspired by the Modrinth Security Notice

Version 2024-11