Security fixes are applied to the latest released image tags and the default branch.
Please do not open a public issue for security vulnerabilities.
Instead, use GitHub Security Advisories:
Include:
- affected image tag(s)
- reproduction steps
- impact assessment
- any suggested fix
This repository covers:
- container build files and scripts
- entrypoint/runtime behavior
- documentation that could lead to unsafe operations
Vulnerabilities in the official Hytale server software itself should be reported to Hypixel Studios via their official channels.
When reporting issues, never include:
- OAuth refresh/access tokens
HYTALE_SERVER_SESSION_TOKEN/HYTALE_SERVER_IDENTITY_TOKEN.hytale-downloader-credentials.json