We aim to take immediate action to address serious security-related problems that involve our project.

Note that we will only fix such issues in the most recent minor release of LangChain4j CDI.

Please do not report security issues to the public issue tracker. If you think you have found a security vulnerability, please send security issues to [email protected]. We will do our best to get back to you as soon as possible.

If you would like to work with us on a fix for the security vulnerability, please include your GitHub username in the above email, and we will provide you access to a temporary private fork where we can collaborate on a fix without it being disclosed publicly, including in your own publicly visible git repository.

Do not open a public issue, send a pull request, or disclose any information about the suspected vulnerability publicly, including in your own publicly visible git repository. If you discover any publicly disclosed security vulnerabilities, please notify us immediately through the emails listed in the section above.