Thank you for helping keep pyDeprecate and its users safe! We take security seriously and appreciate responsible disclosure of any vulnerabilities.

Security updates are typically provided for the latest stable release of the project.

Please do NOT report security vulnerabilities through public GitHub issues.

Instead, report security vulnerabilities through one of these private channels:

1. GitHub Security Advisories (preferred) — Use the "Report a vulnerability" button on the repository's Security tab
2. Private/Direct contact — Email the project maintainer (Borda) directly if their contact information is available via GitHub profile.

When reporting a vulnerability, please provide:

• Description — A clear explanation of the vulnerability
• Impact — What could an attacker potentially do?
• Steps to reproduce — Detailed steps to demonstrate the issue
• Affected versions — Which versions are impacted?
• Suggested fix — If you have one (optional but appreciated)

After you submit a report:

When using pyDeprecate in your projects, we recommend:

• Keep dependencies updated — Regularly update to the latest versions
• Review security advisories — Watch the repository for security announcements
• Follow least privilege — Use minimal permissions required
• Validate inputs — Always sanitize external data in your applications

We believe in recognizing security researchers who help improve our projects:

• Public acknowledgment in release notes and security advisories
• Addition to a project's SECURITY.md acknowledgments section (if applicable)
• Our sincere gratitude for helping keep users safe

• GitHub Security Advisories
• Responsible Disclosure Guidelines