We only support the latest version of WinHome. Please ensure you are using the most recent release before reporting a security vulnerability.
| Version | Supported |
|---|---|
| Latest | ✅ |
| < 1.0 | ❌ |
We take security seriously. If you discover a security vulnerability within WinHome, please do not disclose it publicly. Publicly disclosing a vulnerability can put the entire community at risk.
Please report security vulnerabilities via one of the following methods:
- Email: Send an email to security@winhome.dev.
- GitHub: Use the Private Vulnerability Reporting feature on GitHub.
To help us triage and fix the issue as quickly as possible, please include:
- A descriptive title.
- A clear description of the vulnerability.
- Steps to reproduce the issue (a proof-of-concept script or configuration is highly appreciated).
- Potential impact of the vulnerability.
- We will acknowledge receipt of your report within 48 hours.
- We will provide an initial assessment of the report within 5 business days.
- We will keep you informed of our progress as we work on a fix.
- We will coordinate a disclosure date with you once the fix is ready.
Thank you for helping keep WinHome and its users safe!