If you discover a security vulnerability in xmlschema-rs, please report it responsibly.

Do not open a public GitHub issue for security vulnerabilities.

Instead, please send an email to: luuvish@gmail.com

Include:

• Description of the vulnerability
• Steps to reproduce
• Potential impact
• Suggested fix (if any)

• Acknowledgement: within 5 business days
• Initial assessment: within 10 business days
• Fix release: as soon as practical, depending on severity

This policy applies to:

• The xmlschema-rs Rust crate
• The xmlschema-js npm package
• The xmlschema-wasm WebAssembly package