| Version | Supported |
|---|---|
| 0.2.x | Yes |
| < 0.2 | No |
If you discover a security vulnerability, please report it responsibly.
Do not open a public issue.
Instead, email security@kodus.io with:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix (if any)
We will acknowledge your report within 48 hours and provide a timeline for a fix.
This policy covers the @kodus/kodus-graph npm package and its compiled binaries. Third-party dependencies are outside our direct control, but we will coordinate with upstream maintainers when applicable.