| Version | Supported |
|---|---|
| 1.x | ✅ Active |
If you discover a security vulnerability in AXIOM, please report it responsibly.
Do NOT open a public GitHub issue for security vulnerabilities.
- Email: Send details to adityakammati@gmail.com
- Subject:
[SECURITY] AXIOM - Brief description - Include:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix (if any)
- Acknowledgment: Within 48 hours
- Assessment: Within 1 week
- Fix & Disclosure: Coordinated with reporter
The following are in scope:
- Authentication bypass or token leakage
- SQL injection or data exposure
- Cross-site scripting (XSS)
- Rate limiting bypass
- Unauthorized access to user data
- Denial of service attacks
- Social engineering
- Issues in third-party dependencies (report to upstream)
Thank you for helping keep AXIOM and its users safe! 🛡️