XCSKit is currently pre-1.0. Security fixes are expected to land on the default branch first and be included in the next tagged release.
Please do not open a public issue for a vulnerability report.
Use GitHub private vulnerability reporting for this repository if it is enabled. If private reporting is not yet available, contact the maintainer through a private channel first and include only enough information to establish contact.
Helpful report details include:
- Affected XCSKit version or commit
- Swift version and operating system
- Minimal
.xcstringsinput or API sequence needed to reproduce the issue - Expected and observed impact
- Whether the issue is already public
The maintainer will acknowledge reports as soon as practical, investigate reproducibility and impact, and coordinate disclosure timing before public details are published.