We release patches for security vulnerabilities for the following versions:
| Version | Supported |
|---|---|
| 1.1.x | ✅ |
| 1.0.x | ✅ |
| < 1.0 | ❌ |
If you discover a security vulnerability within Flare, please send an email to Ali Harb at [security@example.com]. All security vulnerabilities will be promptly addressed.
Please do not report security vulnerabilities through public GitHub issues.
When reporting a vulnerability, please include:
- Description of the vulnerability
- Steps to reproduce the issue
- Potential impact
- Suggested fix (if any)
- We will acknowledge your email within 48 hours
- We will send a more detailed response within 7 days
- We will work on a fix and release it as soon as possible
- Security issues will be disclosed after a fix is released
- We will credit researchers who report vulnerabilities (unless they prefer to remain anonymous)
Thank you for helping keep Flare and its users safe!