Thank you for taking the time to help make T-Insights more secure.
We appreciate responsible disclosures of vulnerabilities and are committed to promptly addressing any security issues.
We release security updates only for actively maintained repositories and branches.
| Repository | Maintained Branch | Supported |
|---|---|---|
tinsights-web |
main |
✅ Yes |
| Other repositories | main or stable |
✅ Yes |
If you're unsure whether a repository is actively maintained, please contact us before disclosing any issue.
If you discover a security vulnerability, please DO NOT open a public issue or pull request.
Instead, contact us privately via email:
Please include as much detail as possible to help us investigate quickly:
- A clear description of the vulnerability
- Steps to reproduce the issue
- Affected components and potential impact
- Suggested fixes or mitigation steps (if available)
We aim to respond within 72 hours and will address the issue promptly based on its severity.
- Report issues privately and confidentially
- Please do not disclose details publicly until we have resolved the issue
- We may acknowledge your contribution publicly (with your permission)
- We value and respect all good-faith reports
Please do not report:
- Automated scanner output without proof-of-concept
- Social engineering, phishing, or physical security issues
- Vulnerabilities in third-party dependencies (unless exploitable via our code)
Your efforts help us keep the T-Insights community safe, secure, and trusted by all.
🛡️ Made with care by the T-Insights maintainers