Reporting Vulnerabilities

Hello, if you believe you’ve found something in aah framework which has security implications, please do not raise an issue in a public forum; it's best interest and to safe gurad aah application users before the fix is ready.

I strongly encourage people to report such issue via email to Security issues always take precedence over bug fixes and feature work. The project maintainers will work with you closely to resolve issues where required.

Once an issue is resolved it is usually released immediately with the appropriate semantic version and gets documented in this page.


List of security issues addressed with summary.

aah v0.x

Fixed in v0.12.4

Fixed in v0.5.1