If you believe you have found a security issue in this repository or one of its add-ons, please do not open a public issue with exploit details.
Instead, report it privately through GitHub security advisories or by contacting the repository maintainer directly. Include:
- The affected add-on or file
- A short description of the issue
- Steps to reproduce the problem
- The potential impact
- Any suggested mitigation
I will review the report and respond as time allows.
This repository contains Home Assistant add-ons and related documentation. Security reports are most helpful when they involve:
- Secrets handling
- Container configuration
- Privilege escalation
- Unsafe defaults
- Network exposure
Security fixes are generally made against the current state of the default branch. Older revisions may not receive backports.
Please allow time for the issue to be reviewed and fixed before sharing full public details.