We take the security of this project seriously. We appreciate your efforts to responsibly disclose your findings and will make every effort to acknowledge your contributions.

Please do not report security vulnerabilities through public GitHub issues.

If you discover a security vulnerability, please report it privately using GitHub's private vulnerability reporting at https://github.com/frenck/python-twentemilieu/security/advisories/new.

Alternatively, you can email [email protected] directly.

When reporting, please include:

1. A description of the vulnerability and its potential impact.
2. Steps to reproduce the issue or a proof of concept.
3. Any known mitigations or workarounds.

After the initial report, we will keep you informed of the progress towards a fix and may ask for additional information or guidance.

We aim to address reported vulnerabilities within 90 days.

Thank you for helping keep this project secure!