This is the security notice for this repository. The notice explains how vulnerabilities should be reported.
If you've found a vulnerability, we would like to know so we can fix it before it is released publicly, please Open a draft security advisory.
The following vulnerabilities are not in scope:
- Volumetric vulnerabilities, for example overwhelming a service with a high volume of requests
If you aren't sure, you can still reach out via email or direct message.
This notice is inspired by the Modrinth Security Notice
Version 2024-11