Files
InvoiceShelf/SECURITY.md

18 lines
1.0 KiB
Markdown
Raw Blame History

This file contains ambiguous Unicode characters
This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.
# Security Policy
## Supported Versions
| Version | Status |
| ------- | ------ |
| 3.x | **Active development** — new features and fixes |
| 2.x | **Security patches only** (feature freeze since 2.4.0) — through **2027-09-01** |
| ≤ 2.3.x | No longer supported — please update to the latest 2.x or move to 3.x |
As of **2.4.0**, the 2.x line is in feature freeze: all new feature development happens on **3.x**. The 2.x branch will continue to receive **security patches only, until September 1, 2027 (2027-09-01)**. To stay covered, run the latest 2.x release, and plan your upgrade to 3.x ahead of that date.
## Reporting a Vulnerability
Please email **security@invoiceshelf.com** to report any security vulnerabilities. In the unlikely event that you havent heard back, try reaching out on Discord to one of our moderators.
We will acknowledge receipt of your report and strive to provide regular updates on our progress. If you're curious about the status of your disclosure, please feel free to email us again.