TetraChess is currently in active development.
At this stage, we do not maintain separate supported branches or backport security fixes.
Security fixes will generally be released on the latest main branch.

If you believe you have found a security vulnerability in TetraChess:

• Do not open a public GitHub issue describing the vulnerability.
• Please contact the maintainers privately so we can investigate and fix the issue before it is disclosed publicly.

To report a vulnerability, join our Discord and contact the maintainers directly:

• Discord invite
• After joining, please open a ticket or DM a maintainer with:
  • A short description of the issue.
  • Steps to reproduce.
  • Any relevant logs, screenshots, or proof-of-concept code.

We aim to:

• Acknowledge your report as soon as possible.
• Provide an initial assessment within a reasonable time frame.
• Keep you informed about the status of the fix and planned disclosure timeline.

Thank you for helping keep TetraChess and its players safe.