Currently, only the latest release of Agent Shenji is supported with security updates.
| Version | Supported |
|---|---|
| v1.0.x | ✅ |
| < v1.0 | ❌ |
We take the security of Agent Shenji very seriously. If you discover a vulnerability, we would like to know about it so we can take steps to address it as quickly as possible.
Please DO NOT report security vulnerabilities via public GitHub issues.
Instead, please send an email to the project maintainers or open a private security advisory on GitHub if enabled.
Please provide as much information as possible, including:
- The type of issue (e.g., buffer overflow, SQL injection, cross-site scripting, etc.)
- Full paths of source file(s) related to the manifestation of the issue
- The location of the affected source code (tag/branch/commit or direct URL)
- Any special configuration required to reproduce the issue
- Step-by-step instructions to reproduce the issue
- Proof-of-concept or exploit code (if possible)
- Impact of the issue, including how an attacker might exploit the issue
- We will acknowledge receipt of your report within 48 hours.
- We will investigate the issue and determine its impact.
- We will work with you to develop a fix.
- We will publish a security advisory and release a patch.
Thank you for helping to keep Agent Shenji and our users safe!