We are currently supporting the following versions of jBase with security updates:
| Version | Supported | Notes |
|---|---|---|
| 2.x | ✅ | Current major version |
| 1.x | ❌ | End of Life |
We take the security of jBase seriously. If you believe you have found a security vulnerability in this framework, please report it to us as described below.
Please do not report security vulnerabilities through public GitHub issues.
Please email the lead developer directly at: [jbase@sven-minio.de]
Please include the following details in your report:
- The version of jBase you are using.
- A description of the vulnerability.
- Steps to reproduce the issue (code snippets or a proof-of-concept are highly appreciated).
- Any potential impact you foresee.
- Acknowledgment: We will make every effort to acknowledge your report within 48 hours.
- Investigation: We will investigate the issue and verify the vulnerability.
- Fix: Once confirmed, we will work on a patch.
- Release: We will release a new version (e.g., v2.0.3) containing the security fix.
- Disclosure: After the fix is released and users have had time to update, we will publicly acknowledge your contribution (unless you wish to remain anonymous).
Thank you for helping keep jBase safe for everyone!