The following versions of OpenInsider Scraper receive security updates:
| Version | Supported |
|---|---|
| 1.0.0 | ✅ Active support |
| < 1.0.0 | ❌ No longer maintained |
If you discover a security vulnerability in this project, please do not report it publicly. Instead, follow these steps:
- Email us at [sokkadev@gmx.de] with a detailed description of the issue.
- Include reproduction steps to help us verify and fix the vulnerability quickly.
- Do not create a GitHub issue for security reports to prevent exploitation before a fix is available.
We aim to respond to security reports within 48 hours and will provide updates as we work on a resolution.
To ensure the security of your deployment, we recommend the following:
- Use a virtual environment (
venv) to isolate dependencies. - Keep dependencies updated by running
pip list --outdatedregularly. - Avoid exposing logs with sensitive data (e.g., API keys, tokens).
- Enable Docker security measures if running in a containerized environment.
We appreciate responsible disclosure and will acknowledge security researchers who report vulnerabilities responsibly.
Thank you for helping to keep OpenInsider Scraper secure!