The following versions of the project are currently being supported with security updates.
| Version | Supported |
|---|---|
| main | ✔️ |
Please report security vulnerabilites to Moritz.Hedtke@t-online.de.
You can use PGP encryption if you want. My public key is at https://keys.openpgp.org/search?q=Moritz.Hedtke%40t-online.de.
You can import it using: gpg --keyserver keys.openpgp.org --recv-key 0x1248D3E11D114A8575C989346794D45A488C2EDE
My fingerprint is: 1248 D3E1 1D11 4A85 75C9 8934 6794 D45A 488C 2EDE
You can expect me to respond within a few days but please be patient if it takes longer.
Please provide as much details as you can. If you have one a proof of concept would be great.
If you report a valid vulnerability you can get a place in the (currently nonexistent) Hall of Fame. There may be a possibility for a bug bounty but I can't guarantee that.
You can write in English or German.