We are committed to fixing security vulnerabilities in the latest stable release of each published package from this repository.
| Version | Supported |
|---|---|
| 2.x.x | ✅ |
| < 2.0.0 | ❌ |
In scope: npm packages published from this repository:
forge-sql-orm(core ORM)forge-sql-orm-extra(extended ORM — global cache, Rovo)forge-sql-orm-cli(schema/migration CLI)
Please DO NOT report security vulnerabilities through public GitHub issues.
If you believe you have found a security vulnerability in any of the packages above, please report it by emailing us directly at: vaszakharchenko@gmail.com
- Response: We will acknowledge your email within 48 hours.
- Investigation: We will investigate the issue and keep you updated on the progress.
- Fix: Once the vulnerability is confirmed, we will release a patch as quickly as possible.
- Disclosure: We will not disclose the issue publicly until a fix is available.
Thank you for helping keep Forge SQL ORM safe!