mirror of
https://github.com/plausible/analytics.git
synced 2024-12-26 11:02:52 +03:00
16 lines
1.1 KiB
Markdown
16 lines
1.1 KiB
Markdown
# Security Policy
|
|
|
|
## Supported Versions
|
|
|
|
We only add security updates to the latest MAJOR.MINOR version of the project. No security updates are backported to previous versions. If you
|
|
want be up to date on security patches, make sure your Plausible image is up to date with `plausible/analytics:latest`
|
|
|
|
## Reporting a Vulnerability
|
|
|
|
Our software is updated several times per week and we also have a way for you to [report any security vulnerabilities](https://plausible.io/vulnerability-disclosure-program). A more detailed overview about our security practices can be found on [plausible.io/security](https://plausible.io/security).
|
|
|
|
If you've found a security vulnerability with the Plausible codebase, you can disclose it responsibly by sending a summary to security@plausible.io.
|
|
We will review the potential threat and fix it as fast as we can.
|
|
|
|
While we do not have a bounty program in place yet, we are incredibly thankful for people who take the time to share their findings with us. Whether it's a tiny bug that you've found or a security vulnerability, all reports help us to continuously improve Plausible for everyone. Thank you!
|