We aim to always provide security patches for the latest release. Earlier major versions are fixed on a best effort basis.
Please report (suspected) security vulnerabilities to [email protected]. We will respond as soon as possible, please note that this is only a private project and we cannot guarantee any response time. If the issue is confirmed, we will release a patch as soon as possible depending on complexity.