We strive to keep our website and deployment processes secure. Currently, the following versions are supported:

If you discover a security vulnerability, do not open a public issue. Instead, email us at [email protected], and for added security, encrypt your report using our PGP key:

• PGP Key: Public Key Block
• Key Fingerprint: 0xB3BD6196E1CFBFB4

Please include:

• 📝 A detailed description of the issue.
• ⚙️ Steps to reproduce or proof of concept.
• 🔍 Potential impact and suggested fixes.

We will respond within 5 business days and aim to resolve verified issues within 10 business days.

• Deployment: GitHub Actions automates our deployment, with secrets securely stored via GitHub Secrets.
• Dependencies: Regular npm audit checks and Dependabot help us address vulnerabilities in dependencies promptly.
• Data Security: This repository is a static website that doesn't handle user data or backend services. Content is delivered securely via HTTPS, and no sensitive information like passwords or API keys is stored here.
• Content Integrity: Branch protection, mandatory code reviews, and build validation ensure unauthorized changes are prevented.

Thank you for helping us keep our project secure! 🔐