We are currently in active development and do not yet offer long-term support or versioned releases. Security-related patches are prioritized and released as soon as possible in the main branch.
| Version | Supported? |
|---|---|
main |
✅ Yes |
<0.x |
❌ No |
If you discover a security vulnerability in GoSight, please report it responsibly.
- Email: [email protected]
- GitHub Issues: Open a private security advisory
Please include as much detail as possible:
- Affected component(s)
- Steps to reproduce
- Potential impact
- Suggested fixes (if any)
We follow a responsible disclosure process. Once a vulnerability is confirmed:
- A patch will be developed and tested.
- Maintainers may contact affected users or update documentation if needed.
- A public disclosure may be made via GitHub releases or advisories.
As GoSight matures, we will introduce:
- Signed releases
- Hardened default configurations
- Security CI checks & scanning
- Integration with OpenSSF Best Practices
Thanks for helping keep GoSight secure!