If you discover a security vulnerability within typemap, please send an email to security@nesalia.com. All security vulnerabilities will be promptly addressed.

Please include the following information:

• Type of vulnerability
• Full paths of source file(s) related to the vulnerability
• Location of the affected source code
• Any special configuration required to reproduce the issue
• Step-by-step instructions to reproduce the issue
• Proof-of-concept or exploit code (if possible)
• Impact of the issue, including how an attacker might exploit it

• Initial Response: We aim to acknowledge the report within 48 hours
• Severity Assessment: We will assess severity and provide a timeline within 7 days
• Fix Release: Critical vulnerabilities will be addressed as quickly as possible

1. Security issue is reported
2. Maintainers assess severity and create internal ticket
3. Fix is developed and tested
4. Security advisory is prepared
5. New release is published with security fix
6. Users are notified to upgrade

We strive to keep our dependencies up-to-date and secure. We use Dependabot for automated dependency updates.

• Always use the latest version of typemap
• Keep your Python version up-to-date
• Review third-party code before integration
• Report security issues responsibly (do not disclose publicly until fixed)