Skip to content

Security: tomika/node-gui

Security

SECURITY.md

Security Policy

Reporting a vulnerability

If you discover a security vulnerability in node-gui, please report it responsibly by opening a private security advisory at:

https://github.com/tomika/node-gui/security/advisories/new

Do not open a public issue for security vulnerabilities.

Scope

This policy covers the node-gui npm package, including:

  • The native addon (src/)
  • The JavaScript API (index.js)
  • The pack CLI (bin/pack.js)
  • The launcher stubs (src/launcher/)

Response

  • You will receive an acknowledgment within 48 hours.
  • A fix will be developed privately and released as a patch version.

There aren't any published security advisories