1 | # Security Policy
|
2 |
|
3 | ## Supported Versions
|
4 |
|
5 | Security updates are applied only to the latest release.
|
6 |
|
7 | ## Reporting a Vulnerability
|
8 |
|
9 | If you have discovered a security vulnerability in this project, please report it privately. **Do not disclose it as a public issue.**
|
10 | This gives us time to work with you to fix the issue before public exposure, reducing the chance that the exploit will be used before a patch is released.
|
11 | Please disclose it to [Sasha Koss](mailto:koss@nocorp.me). This project is maintained by a team of volunteers
|
12 | on a reasonable-effort basis. As such, please give us at least 90 days to work on a fix before public exposure.
|