Only the latest released version of SLASHED for WordPress receives security fixes. Update before reporting.
Report privately — do not open a public issue or PR. Use GitHub Security Advisories.
Please include:
- affected integration (Bricks / Gutenberg) and plugin version;
- WordPress, PHP, and (if relevant) Bricks versions;
- steps to reproduce or a proof of concept;
- impact.
Vulnerabilities in the underlying CSS framework belong in the SLASHED repo.
We aim to acknowledge a report within a few days, share a fix timeline once triaged, and credit reporters in the release notes unless you prefer otherwise.