We release patches for security vulnerabilities on a regular cadence. Which versions are eligible for receiving such patches can be found below:

Please do NOT raise a GitHub Issue to report a security vulnerability. Please report (suspected) security vulnerabilities to [email protected], preferably with a proof of concept.. You will receive a response from us within 24 hours. If the issue is confirmed, we will release a patch as soon as possible depending on complexity but historically within a few days.

Non-vulnerability related security issues such as new great new ideas for security features are welcome on GitHub Issues.