The following versions of Yyana's Flashcard are currently supported with security updates:

We recommend using the latest version from the repository to ensure you have the most recent security fixes and improvements.

If you discover a security vulnerability in Yyana's Flashcard, we appreciate your help in disclosing it responsibly. Please follow these steps:

1. Do Not Disclose Publicly: Avoid sharing details of the vulnerability in public forums, such as GitHub issues, social media, or other platforms, until it has been addressed.
2. Contact the Maintainer Privately:
   • Create a private issue or discussion on the GitHub repository.
   • Include a detailed description of the vulnerability, steps to reproduce, and potential impact.
3. Response Time:
   • You can expect an initial response within 48 hours.
   • We will work with you to validate and address the issue promptly.
4. Disclosure:
   • Once the vulnerability is fixed, we will coordinate with you on public disclosure, if appropriate.
   • Credit will be given for your discovery in release notes, unless you prefer anonymity.

To keep your use of Yyana's Flashcard secure:

• Use Trusted Sources: Download or clone the application only from the official GitHub repository.
• Update Assets: Ensure CDN-loaded assets (e.g., Google Fonts) are from reputable sources. Consider hosting them locally for added security.
• Input Validation: The application does not process user input beyond UI interactions, reducing XSS risks. Avoid running it in untrusted environments.
• HTTPS: If hosting online, serve the application over HTTPS to protect data in transit.
• Browser Security: Use a modern browser with up-to-date security patches.

Yyana's Flashcard relies on the following third-party assets, which may have their own security policies:

• Google Fonts (Poppins): Loaded via CDN for typography.

Check the respective project pages for their security advisories and ensure you’re using the versions specified in index.html.

Thank you for helping keep Yyana's Flashcard secure!