Skip to content

Security: lsj1206/PixConvert

Security

SECURITY.md

Security Policy

Supported Versions

PixConvert currently supports security fixes for the latest v1.0.x release line.

Version Supported
v1.0.x Yes
Earlier versions No

Reporting a Vulnerability

Please do not report security vulnerabilities through public GitHub issues.

Use GitHub's private vulnerability reporting or a private security advisory when available. If private reporting is unavailable, open a minimal public issue asking for a secure contact path, but do not include exploit details, proof-of-concept files, private data, or sensitive logs.

When reporting, include:

  • Affected PixConvert version
  • Windows version
  • Steps to reproduce
  • Impact assessment
  • Any relevant files or logs that can be shared safely

Security vs. General Bugs

Use a normal bug report for crashes, conversion failures, UI issues, or unsupported file behavior that does not expose sensitive data or allow abuse. Use the security reporting path for issues such as arbitrary file overwrite, unintended file disclosure, unsafe update behavior, or malicious input handling that could compromise a user's system or data.

There aren't any published security advisories