The following table lists versions and whether they are supported. Security vulnerability reports will be accepted and acted upon for all supported versions.
| Version | Supported |
|---|---|
| 3.7.x | ✅ |
| 3.6.x | ✅ |
| 3.5.x | ❌ |
| 3.4.x | ❌ |
| 3.3.x | ❌ |
| < 3.3 | ❌ |
To report a security vulnerability, please use the Tidelift security contact. Tidelift will coordinate the fix and disclosure.
If you have found a security vulnerability, in order to keep it confidential, please do not report an issue on GitHub.
We do not award bounties for security vulnerabilities.