The following table outlines which versions of this project are actively supported with security updates:
| Version | Supported |
|---|---|
| 5.1.x | β Yes |
| 5.0.x | β No |
| 4.0.x | β Yes |
| < 4.0 | β No |
Only supported versions will receive patches for security vulnerabilities. If you are using an unsupported version, please upgrade to a supported release.
We take security seriously and appreciate your help in keeping this project safe. If you discover a vulnerability:
-
Where to report:
Please report vulnerabilities via our GitHub Security Advisories page: Report a vulnerability -
What to include:
- A clear description of the vulnerability
- Steps to reproduce the issue
- Potential impact if exploited
- Suggested fixes (if any)
-
Response timeline:
- You will receive an acknowledgment within 48 hours.
- We aim to provide updates on progress every 7 days until resolution.
- If the vulnerability is accepted, a patch will be developed and released as soon as possible.
- If declined, we will explain why and provide guidance if applicable.
-
Confidentiality:
Please do not disclose the vulnerability publicly until we have released a fix. Responsible disclosure helps protect all users.