We are actively developing the project and fixing bugs and vulnerabilities on the main and develop branches. Please use the latest version whenever possible.
| Version | Supported |
|---|---|
main (latest) |
β Yes |
develop |
β Yes (dev builds) |
| Older versions | β No |
If you discover a security vulnerability in PlantPulse:
- Do not open a public issue.
- Instead, report it privately via:
- π§ Email: plantpulse@lankasmartfarm.org
- π Include:
- Description of the vulnerability
- Steps to reproduce
- Impact assessment (if possible)
We will:
- Acknowledge your report within 48 hours
- Investigate and address the issue within 7 working days
- Credit you as the reporter (optional)
- Avoid hardcoded credentials or device identifiers
- Validate all data received via RF/LoRa/telemetry
- Isolate insecure sensor modules using GPIO filters
- Report even minor anomalies that could lead to abuse
Security is a shared responsibility. Letβs keep PlantPulse safe for all its users.