Please do not report security vulnerabilities through public GitHub issues. We value the work of security researchers and the community in making this project secure. To encourage responsible disclosure, please follow the process below to report any issues privately.

If you discover a potential security vulnerability, please notify us through the following method:

GitHub Private Vulnerability Reporting: Use the [Security tab] of this repository to "Report a vulnerability."

To help us prioritize and triage your report, please include:

A description of the vulnerability and its potential impact.

Steps to reproduce the issue (proof-of-concept scripts or screenshots are helpful).

Any relevant configuration details or environment info.

Social engineering (e.g., phishing).

Denial of Service (DoS) attacks that simply overwhelm bandwidth.

Issues related to third-party dependencies (please report these to the respective maintainers).

We ask that you wait for us to release a fix and provide a reasonable window for users to update before you discuss the vulnerability publicly.

Note: We appreciate your patience and your help in keeping nse2 safe for everyone.