We provide security updates only for the latest minor release series.
Older series are not supported and will not receive security patches.
| Version | Supported |
|---|---|
| 3.0.x | โ |
| < 3.0 | โ |
If you discover a security vulnerability in Habo:
- Do not open a public issue.
- Instead, please use the GitHub Security Advisory feature by clicking:
- Go to the repositoryโs Security tab
- Click "Report a vulnerability"
- Provide as much detail as possible:
- Steps to reproduce
- Potential impact
- Any suggested fix (if known)
We aim to acknowledge reports within 48 hours and work with you to release a fix as quickly as possible.
- We will confirm the issue, develop a fix, and release an update before publicly disclosing the vulnerability.
- Credit will be given to security researchers who responsibly report issues (unless anonymity is requested).
We appreciate the work of the security community in helping keep Habo safe for everyone.