The following versions of WikiCFP Scanner are currently supported with security updates:

If you discover a security vulnerability in WikiCFP Scanner, please report it responsibly.

Please do not open a public issue for security vulnerabilities.

Instead, please send an email to me@dipankar.name with the following details:

• A description of the vulnerability
• Steps to reproduce the issue
• The affected version(s)
• Any potential mitigations you have identified

I will acknowledge receipt of your report within 48 hours and will work to validate and address the issue as quickly as possible.

When using WikiCFP Scanner, please keep the following in mind:

• The tool executes the Claude CLI as a subprocess. Ensure the CLAUDE_PATH environment variable points to a trusted executable.
• The tool fetches data from external websites (WikiCFP, conference sites). Be cautious when using the tool on untrusted networks.
• Keep your dependencies up to date by regularly running uv sync or pip install --upgrade wikicfp-scanner.