The following versions of the project are currently being supported with security updates.

Please report security vulnerabilites to Moritz.Hedtke@t-online.de.

You can use PGP encryption if you want. My public key is at https://keys.openpgp.org/search?q=Moritz.Hedtke%40t-online.de.

You can import it using: gpg --keyserver keys.openpgp.org --recv-key 0x1248D3E11D114A8575C989346794D45A488C2EDE

My fingerprint is: 1248 D3E1 1D11 4A85 75C9 8934 6794 D45A 488C 2EDE

You can expect me to respond within a few days but please be patient if it takes longer.

Please provide as much details as you can. If you have one a proof of concept would be great.

If you report a valid vulnerability you can get a place in the (currently nonexistent) Hall of Fame. There may be a possibility for a bug bounty but I can't guarantee that.

You can write in English or German.