| Version | Supported |
|---|---|
| ≥ 1.6.0 | ✅ |
| < 1.6.0 | ❌ |
There are three channels for reporting security vulnerabilities:
- Actively exploited vulverabilities should be reported by Discord DM to '@mrogalski.eu'.
- Vulnerabilities that could lead to remote code execution (stack overflows, data races) should be reported through an email to "Marek Rogalski [email protected]".
- All other vulnerabilities (DoS, crashes) should be reported through GitHub issues.
Project is not staffed so expect response latency up to 24 hours for issues reported through Discord and up to 1 week for issues reported through email & GitHub.
In all cases a fix is always welcome.
Gatekeeper includes built-in update mechanism which may take up to 1 week before an update takes place. It's good to avoid disseminating details of vulnerabilities during this time. Black hats may be watching!