Currently supported versions for security updates:
| Version | Supported |
|---|---|
| 2.0.x | β Yes |
| 1.4.x | |
| < 1.4 | β No |
If you discover a security vulnerability in RSInfinity, please follow these steps:
Security vulnerabilities should be reported privately to protect users.
- Email: Send details to security@rsinfinity.software (if available)
- Discord: Contact administrators directly on our Discord server
- GitHub: Use the private vulnerability reporting feature
Please provide:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix (if you have one)
- Your contact information
- Initial Response: Within 48 hours
- Status Update: Within 7 days
- Fix Timeline: Depends on severity (Critical: <7 days, High: <14 days, Medium: <30 days)
When using RSInfinity:
-
Download from Official Sources Only
- GitHub Releases
- Official website: https://rsinfinity.software/
-
Verify File Integrity
- Check SHA256 hashes (provided in releases)
- Verify digital signatures when available
-
Keep Updated
- Always use the latest version
- Enable auto-update notifications
-
System Requirements
- Use on legitimate Roblox installations only
- Ensure Windows Defender/Antivirus is active
- Run with appropriate user permissions
Current known security considerations:
- Admin Rights: The installer requires administrator privileges to modify Roblox files
- Registry Access: Reads Roblox installation path from Windows Registry
- File Modifications: Modifies Roblox directory to inject Reshade DLL
These are intended behaviors and necessary for the application to function.
| Date | Issue | Severity | Status |
|---|---|---|---|
| 2025-12-18 | Initial security review | Info | Complete |
- Currently: Installers are not code-signed
- Planned: Code signing certificate for future releases
For security concerns:
- Discord: RSInfinity Community
- Issues: Use private reporting on GitHub
Thank you for helping keep RSInfinity and its users safe!