We actively support the following versions of RPi Simulator with security updates:
| Version | Supported |
|---|---|
| 1.0.x | ✅ |
| < 1.0 | ❌ |
We take security vulnerabilities seriously. If you discover a security issue in RPi Simulator, please report it responsibly.
- Email: Send details to connect@sherinjosephroy.link
- Subject: Include "SECURITY" in the subject line
- Details: Provide as much information as possible about the vulnerability
- Description of the vulnerability
- Steps to reproduce the issue
- Potential impact assessment
- Suggested fix (if available)
- Your contact information
- Initial Response: Within 48 hours
- Status Update: Within 7 days
- Fix Timeline: Varies based on severity (1-30 days)
When using RPi Simulator:
- Code Execution: The simulator runs user code in a sandboxed environment
- Network Access: Headless mode should be run behind proper authentication
- File Access: Limit file system access in production deployments
- Updates: Keep RPi Simulator updated to the latest version
- We will acknowledge receipt of vulnerability reports
- We will provide regular updates on our progress
- We will credit researchers who report vulnerabilities responsibly
- We will coordinate disclosure timing with the reporter
Thank you for helping keep RPi Simulator secure!