Security fixes are provided for the latest stable release and the current main branch.
| Version | Supported |
|---|---|
| Latest stable release | Yes |
main branch |
Best effort |
| Older releases | No |
Please do not report security vulnerabilities in public GitHub issues.
Email vulnerability reports to info@inowio.in with the subject:
[SECURITY] Inowio D2d
Include as much detail as possible:
- Affected version or commit.
- Operating system and installation type.
- Steps to reproduce the issue.
- Potential impact.
- Any logs, screenshots, or proof-of-concept details that help us verify the report.
We aim to acknowledge valid reports within 5 business days. After validation, we will coordinate a fix, release timing, and public disclosure where appropriate.
- Do not publicly disclose the issue until a fix or mitigation is available.
- Do not access, modify, or disrupt systems, devices, or networks that you do not own or have explicit permission to test.
- Do not use testing methods that could cause data loss, unsafe device behavior, or service disruption.