call-me follows Semantic Versioning for its releases. Please ensure you are using a supported version as listed in our releases page.
If you discover a security vulnerability within call-me, please follow these steps to report it:
-
Do Not Publicly Disclose: Please do not disclose the vulnerability publicly until a fix has been implemented and released.
-
Contact Information: You can report the vulnerability by contacting the maintainers directly at [email protected]. Please include the following details:
- A clear description of the vulnerability.
- Steps to reproduce the issue.
- Any potential impacts or exploits.
-
Acknowledgments: Vulnerability reporters will be acknowledged in the project's
SECURITY.mdfile unless requested otherwise.
To ensure the security of your call-me setup, please consider the following best practices:
-
Access Controls: Limit access to your call-me application to authorized users only.
-
Regular Updates: Keep call-me and all dependencies up to date. Monitor the project's GitHub page for updates.
-
Monitor Activity: Regularly monitor logs and activity for any unauthorized access attempts.
-
Use Secure Credentials: Always use strong, unique passwords and consider using environment variables for sensitive information.
This project is licensed under the GPL3 License.
call-me is intended for use on systems you own or have explicit permission to test. Use of call-me on unauthorized systems may be illegal and is not condoned by the maintainers.
For any other security-related inquiries, feel free to reach out via the contact information provided above.