Security is a top priority for the Pearlen Language project. This document outlines the supported versions and how to report vulnerabilities safely and responsibly.
Only specific releases receive security updates. Please ensure you are using a supported version for the latest patches and fixes.
| Version | Security Supported |
|---|---|
| < 0.1 | β No |
If you're on an unsupported version, we strongly recommend upgrading to the latest stable release.
If you discover a security issue, we strongly encourage responsible disclosure.
Please send details to:
Alternatively, you can create a private GitHub Security Advisory:
π Open a Draft Security Advisory
When reporting, please provide:
- A clear, reproducible description of the vulnerability
- Steps to reproduce
- Impact of the issue
- Affected versions
- Any logs or code samples that help investigation
- Your contact (optional, if you'd like updates)
We commit to:
- Acknowledge your report within 48 hours
- Provide an initial assessment within 3β5 days
- Work with you on a fix and coordinated disclosure
- Credit you (optional) in the security release notes
Please do not publish vulnerabilities publicly until:
- A patch has been released
- We agree on a coordinated disclosure date
This helps protect all users of the project.
We appreciate your help in keeping Pearlen safe for everyone. Responsible security contributions strengthen the entire community.
Just tell me: "write all docs".