1 | # Security Policy
|
2 |
|
3 | ## Supported Versions
|
4 |
|
5 | | Version | Supported |
|
6 | | ------- | ------------------ |
|
7 | | 4.x.x | :white_check_mark: |
|
8 | | 3.x.x | :white_check_mark: |
|
9 | | 2.10.x | :white_check_mark: |
|
10 | | < 2.10 | :x: |
|
11 |
|
12 | ## Reporting a Vulnerability
|
13 |
|
14 | Send an e-mail to the maintainers, eg. @voxpelli through pelle@kodfabrik.se Start the subject line with `SECURITY:`
|
15 |
|
16 | The maintainers will get back to you as soon as possible and work with you to evaluate and handle the vulnerability.
|
17 |
|
18 | As none of the maintainers have maintenance commitance for this module as part of their day jobs, no promises can be made in how fast a fix can be made.
|
19 |
|
20 | Whenever feasible a patch version fixing the security vulnerability will be released and the reporting user, unless it wishes to stay anonymous, will be credited for their contribution.
|
21 |
|
\ | No newline at end of file |