Security fixes are provided for the latest released version.
Please report vulnerabilities privately using GitHub Security Advisories:
Do not open public GitHub issues for security vulnerabilities.
Please include the following in your report when possible:
- A clear description of the issue
- Steps to reproduce
- Impact assessment
- Suggested remediation (if known)
If you need to share sensitive details, you can encrypt your message with this public key:
Fingerprint (verify before use):
- B521 D109 5C63 E077 EAE8 54E9 6805 708F 78A1 9272
- Reports will be acknowledged as quickly as possible.
- A fix timeline will depend on severity and complexity.
- Once resolved, an advisory and/or release notes update may be published.