If you discover a security vulnerability in Omi, please do not open a public issue.
Instead, report it privately using one of these channels:
- GitHub Private Vulnerability Reporting (preferred) — click "Report a vulnerability" on the Security tab.
- Email dihas.sathnindu@gmail.com with details.
Please include:
- A description of the vulnerability and its potential impact
- Steps to reproduce
- Any relevant logs, screenshots, or proof-of-concept code
- Acknowledgement within a few days of your report.
- An assessment of severity and a fix timeline once confirmed.
- Credit in the advisory/release notes, if you'd like it, once the fix ships.
This project does not currently maintain multiple release branches — only the latest code on main is supported.