We support the latest minor release line. Please upgrade to the most recent version before requesting fixes.

• Please email security@gofred.io with details.
• Do not open public issues for suspected vulnerabilities.
• We will acknowledge receipt within 72 hours and provide a timeline for remediation after triage.

This policy covers the gofred codebase and published modules under github.com/gofred-io/gofred.

• Keep your Go toolchain and browsers up to date.
• Avoid serving wasm_exec.js from untrusted sources; use the copy included in this repository.