Skip to content

Security: thecaliskan/oort

SECURITY.md

Security Policy

Supported Versions

The following versions of OORT are currently supported for security updates:

Version Supported Security Support Until
8.4 ✅ Actively Supported 31 Dec 2028
8.3 ✅ Actively Supported 31 Dec 2027
8.2 ✅ Actively Supported 31 Dec 2026
8.1 ✅ Actively Supported 31 Dec 2025
<= 8.0 ❌ No longer supported End of Life

Reporting a Vulnerability

If you discover a security vulnerability in OORT, please do not create a public issue. Instead, report it privately via email.

🔒 Security Contact: [email protected]

We will review your report and respond within 48 hours. If the issue is confirmed as a valid vulnerability, we will work on a fix and provide an estimated timeline for resolution.

Security Fix Process

  1. We validate and confirm the vulnerability.
  2. A fix is developed in a private branch.
  3. The fix is tested and released in a patched version.
  4. The reporter will be credited (if they choose).
  5. The vulnerability details will be disclosed after a fix is released.

Responsible Disclosure

  • Please allow us time to patch before publicly disclosing any vulnerabilities.
  • If you believe a security issue poses an immediate critical risk, please include [URGENT] in your email subject.

Thanks for helping us keep OORT secure! 🚀

There aren’t any published security advisories