To allow fast iterations, the security fixes are applied to the past two minor releases. Only the latest major version is supported. For example, if the latest release is 1.1.x, the security fixes will be applied for 1.0.x and 1.1.x. However, if the latest version is 2.0.x, the patches for 1.x.x won't be applied. Below is the current support table.
| Version | Supported |
|---|---|
| 0.x.x | ✅ |
Our team and community take security seriously. We appreciate your efforts to responsibly disclose your findings, and will make every effort to acknowledge your contributions.
To report a security issue, email [email protected] and include the word "SECURITY" in the subject line.
The team will evaluate your report and send you a response indicating the next steps. After the initial reply to your report, we will keep you informed of the progress if a fix is necessary, and may ask for additional information.