| Version | Supported |
|---|---|
| 6.x | Yes |
| < 6.0 | No |
If you discover a security vulnerability, please report it responsibly:
- Do NOT open a public issue
- Email security concerns to the maintainers
- Include steps to reproduce the vulnerability
- Allow reasonable time for a fix before disclosure
- All dependencies are audited weekly via
cargo audit - License compliance checked via
cargo deny - No unsafe code (
#![forbid(unsafe_code)]enforced via workspace lints) unwrap()banned in production code via clippy configuration- Input validation on all shell script parsing paths
- Fuzzing via
cargo fuzzfor parser hardening