If you discover a security vulnerability in this SDK, please report it responsibly.
Do not open a public issue.
Email security@nellcorp.com with:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix (if any)
We will acknowledge receipt within 48 hours and aim to release a fix within 7 days for critical issues.
This policy covers the @nellcorp/hip-sdk npm package. For vulnerabilities in the HIP protocol or provider implementation, report to the main HIP repository.
| Version | Supported |
|---|---|
| 0.x | Yes |