This project maintains security updates for the following versions:
| Version | Supported |
|---|---|
| 5.1.x | ✅ |
| 5.0.x | ❌ |
| 4.0.x | ✅ |
| < 4.0 | ❌ |
If you are using an unsupported version, please upgrade to a supported version to receive security patches and fixes.
We take security seriously and appreciate your help in keeping our software safe.
If you discover a security vulnerability, please:
- Report it confidentially by emailing [email protected] (or your dedicated security contact).
- Provide detailed information including:
- Description of the vulnerability
- Steps to reproduce
- Impact assessment if known
- Any suggested fixes or mitigations (optional)
- Upon receipt, we will acknowledge your report within 2 business days.
- We will assess the issue and provide updates every 7 calendar days or more frequently if critical.
- We strive to resolve confirmed vulnerabilities promptly and will coordinate disclosure timing with you.
- If the vulnerability is confirmed and fixed, we will credit your contribution in the release notes unless you request anonymity.
For our users and contributors, please:
- Always run supported versions.
- Apply security patches promptly.
- Follow secure configuration guidelines outlined in our documentation.
- Report any suspicious activity or security concerns immediately.
Thank you for helping us maintain a secure and trustworthy project.