As furl-cli is currently in active development and has not yet reached a stable 1.0 release, only the latest published version receives security fixes. Older release lines are not maintained.

If you discover a security vulnerability in furl-cli or furl_core, do not open a public issue or pull request.

Please use GitHub's private vulnerability reporting for this repository. If the private reporting option is not available in your view, contact the maintainer privately through the repository owner account on GitHub and include enough detail to reproduce and assess the issue.

When reporting a vulnerability, include:

• The affected version and platform
• Clear reproduction steps or a proof of concept
• The expected impact and any known limitations
• Possible mitigations or fixes, if you have them

You should expect an initial acknowledgement within 7 days. After triage, the maintainer will confirm whether the report is accepted, may request additional details, and will try to coordinate a fix and release before public disclosure when possible.