| Version | Supported |
|---|---|
| 1.x.x | ✅ |
If you discover a security vulnerability, please:
- Do NOT open a public issue
- Email the maintainer directly
- Include:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix (if any)
- Initial response: Within 48 hours
- Fix timeline: Depends on severity
- Critical: 24-48 hours
- High: 1 week
- Medium: 2 weeks
- Low: Next release
This policy covers:
- The WSPR HA Bridge integration code
- Docker container configuration
- HACS custom component
Out of scope:
- WSPR.live service
- Home Assistant core
- Third-party dependencies