Skip to content

Security: dawiisss/DzLinux

Security

SECURITY.md

Security Policy

We take security seriously. If you discover a vulnerability in DzLinux, please follow the guidelines below to report it responsibly.


Supported Versions

Only the latest active major and minor releases are actively supported with security patches:

Version Supported
1.4.x Yes
< 1.3.x No

Please upgrade to the latest version immediately to ensure you have the latest security fixes.


Reporting a Vulnerability

Please do not report security vulnerabilities publicly via GitHub Issues.

Instead, please report security issues by emailing the main developer directly:

Please include:

  1. A clear description of the vulnerability.
  2. Step-by-step instructions to reproduce the issue (including any code snippets or log files).
  3. The potential impact of the vulnerability.

We will acknowledge receipt of your report within 48 hours and work with you to resolve the issue as quickly as possible.


Disclosure Policy

  • We will aim to investigate and patch reported vulnerabilities within 30 days of receipt.
  • A public security advisory will be published along with a new release containing the fix.
  • Reporters will be credited in the release notes unless they choose to remain anonymous.

There aren't any published security advisories