| Version | Supported |
|---|---|
| 3.x | Yes |
| 2.x | Security fixes only |
| < 2.0 | No |
Do not open a public issue for security vulnerabilities.
Please report security issues via one of the following:
- GitHub Security Advisories: Report a vulnerability
- Email: security@fxtun.dev
- Description of the vulnerability
- Steps to reproduce
- Affected versions
- Potential impact
- Acknowledgment: within 48 hours
- Initial assessment: within 1 week
- Fix release: as soon as possible, depending on severity
We follow coordinated disclosure. We ask that you give us reasonable time to fix the issue before making it public. We will credit reporters in the release notes unless you prefer to remain anonymous.