Neutralino binaries can be updated with neu-cli easily in developer's side. Therefore, if any vulnerability is reported against the Neutralinojs version you use please update binaries via CLI. Whereas, we are still working on software update mechanism in user's perspective where user can automatically update Neutralino binaries from internet.

If you found a vulnerability in Neutralinojs component please report as a Github issue. Thereafter, we'll add security label to those issues and will be fixed with a future release.