Security fixes are applied to the latest published version of the extension.
Do not open public GitHub issues for sensitive vulnerabilities.
Report security issues privately through one of these channels:
- GitHub security advisories for this repository
- the maintainer contact listed on
https://mikesoft.it
Include:
- affected version
- reproduction steps
- impact summary
- any proposed mitigation if available
Never include API keys, account secrets, or unredacted private payloads in public reports.
When sharing payloads for debugging, redact sensitive values while keeping field names and numeric values when possible.