The following table shows the current versions covered with security updates:
| Version | Supported |
|---|---|
| >1.4.x | ✅ |
| <1.4.x | ❌ |
Reporting vulnerabilities on Stellar is really important for the project and to keep everyone safe. It's normal all pieces of technology have vulnerabilities and need security patches over time.
When you find a vulnerability on stellar please send an email to general@stellar-framework.com with the title "SECURITY: " and as the email, body add a long description of the issues and if possible an example/steps to reproduce the issues.
Usually, we will answer between 2 and 5 days and always give an update on the matter. Please, don't share the vulnerability or post details online while we don't give you feedback on the possible issue.