| Version | Supported |
|---|---|
| 1.x | ✅ |
If you discover a security vulnerability in this GitHub Action, please report it by:
- DO NOT create a public GitHub issue for security vulnerabilities
- Email the maintainer directly with details about the vulnerability
- Include steps to reproduce the issue
- Provide any relevant logs or screenshots (with sensitive information redacted)
When using this action, please keep in mind:
- Never commit OpenVPN configuration files, usernames, or passwords to your repository
- Always use GitHub Secrets for sensitive information
- Regularly rotate your OpenVPN credentials
- Use the minimum required permissions for your OpenVPN user account
- Monitor your action logs for any suspicious activity
- Store all sensitive data in GitHub Secrets
- Use short-lived credentials when possible
- Regularly audit your OpenVPN server access logs
- Keep your OpenVPN server software updated
- Use strong, unique passwords for OpenVPN accounts
- The action automatically cleans up processes and temporary files
- Monitor your workflows to ensure cleanup steps complete successfully
Security updates will be released as patch versions. Please keep your action reference updated to the latest version.