We release patches for security vulnerabilities in the following versions:
| Version | Supported |
|---|---|
| 1.x | ✅ |
| < 1.0 | ❌ |
If you discover a security vulnerability, please follow the steps below:
- Do not create a public issue. Instead, send an email to [email protected] with the details of the vulnerability.
- Provide a detailed description of the vulnerability and steps to reproduce it.
- We will acknowledge receipt of your report within 48 hours and will work with you to understand and address the issue.
- Once the vulnerability is confirmed, we will take the necessary steps to release a fix as soon as possible.
- We will notify you when the fix is released and publicly disclose the vulnerability in our release notes.
We appreciate your efforts in making the NetAddress Configuration System more secure. Thank you for helping to keep our project safe.