This page summarizes the project’s security policy and how to report vulnerabilities responsibly.Documentation Index
Fetch the complete documentation index at: https://dylankenneally-react-native-ssh-sftp-96.mintlify.app/llms.txt
Use this file to discover all available pages before exploring further.
Report a Vulnerability
Contact the maintainer privately by email instead of opening a public issue.
Supported Versions
Check which release lines are currently supported before reporting or triaging an issue.
Reporting a vulnerability
If you discover a security issue in this project:- Do not open a public GitHub issue.
- Email github+react-native-ssh-sftp-security@dylankenneally.com.
- Include:
- A description of the vulnerability
- Steps to reproduce it
- The potential impact
- A suggested fix, if you have one
Supported versions
The current support policy is:| Version | Supported |
|---|---|
| Latest | Yes |
| Previous | Yes |
| Older | No |
Security best practices
When using React Native SSH SFTP in your app:- Keep dependencies up to date
- Prefer the latest stable version of the package
- Report suspected issues responsibly
- Follow OWASP guidance for SSH and SFTP-related operations
What to avoid
- Do not disclose a vulnerability publicly before giving the maintainer time to investigate
- Do not use public GitHub issues for exploit details or reproduction steps
- Do not assume older unsupported versions will receive fixes