| Version | Supported |
|---|---|
| 0.3.x | ✅ |
| < 0.3 | ❌ |
We take security vulnerabilities seriously. If you discover a security vulnerability in MCP-B, please follow these steps:
- Do not create a public GitHub issue for the vulnerability
- Email the maintainer directly at bjoern.bethge@gmail.com
- Include the following information:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Any suggested fixes (optional)
- Initial Response: Within 48 hours
- Assessment: Within 7 days
- Fix Timeline: Depends on severity
- Critical: Within 24 hours
- High: Within 7 days
- Medium: Within 30 days
- Low: Next scheduled release
When using MCP-B:
- Keep dependencies up to date
- Use virtual environments
- Review code before executing dynamic content
- Follow the ETHIC principles for AI safety
- Validate all inputs in agent communication
We appreciate responsible disclosure of security vulnerabilities.