Security fixes are provided for the latest release or main branch of each active public repository. Archived or unmaintained repos may not receive updates.

Please do not open public GitHub issues for security vulnerabilities.

Instead, email sickkick40@gmail.com with:

• A description of the issue
• Steps to reproduce
• Affected repository and version
• Impact assessment, if known

You should receive a response within 7 days. We will work with you to understand and address the issue before any public disclosure.

This policy applies to all public repositories under the Shaffer-Softworks organization.