Security Policy
Reporting a Vulnerability
If you discover a security vulnerability in Razor2-Client-Agent, please report it responsibly.
Please do NOT open a public GitHub issue for security vulnerabilities.
Instead, report security issues to:
- Email: toddr@cpan.org
- GitHub: Open a private security advisory
What to include
- Description of the vulnerability
- Steps to reproduce
- Affected versions
- Any potential impact assessment
Response timeline
- We will acknowledge receipt within 72 hours
- We aim to provide an initial assessment within 1 week
- Fixes will be released as soon as practical
Supported versions
Only the latest release on CPAN is actively maintained.