Skip to content

Security: BrNi05/DiscOS

SECURITY.md

Security Policy

Supported Versions

Older versions of DiscOS will generally become unsupported when a new release is published. Support is typically provided for the latest minor version. In the event of a breaking change, the previous minor version might also receive temporary support limited to security updates.

Version Supported End of Life
1.0.0 in 1.1.0
1.1.0 in 2.0.0
2.0.0 in 2.1.0

Reporting a Vulnerability

If you discover a vulnerability, please do not report it as a regular bug. Instead, use the dedicated ticket type and open an issue.

For severe vulnerabilities, or ones that could be easily exploited, please DO NOT open a ticket. Instead, contact me directly via email or draft a security advisory.

What not to report

Please do not report vulnerabilities that only affect unsupported versions of DiscOS.

Please do not report dependency vulnerabilities. Dependabot is checking dependencies every day to ensure secure builds.

Response and solution

Security Issue tickets are top priority and I will do my best to find a solution as fast as possible.

Expect a response within 24 hours and a resolution within a few days.

There aren’t any published security advisories