| Version | Supported |
|---|---|
| latest | ✅ |
| < 1.0 | ❌ |
We take security vulnerabilities seriously. If you discover a security issue, please report it responsibly.
- DO NOT open a public issue for security vulnerabilities
- Go to the Security Advisories page
- Click "Report a vulnerability"
- Provide a detailed description of the vulnerability
- Type of vulnerability
- Full paths of source file(s) related to the vulnerability
- Step-by-step instructions to reproduce
- Proof-of-concept or exploit code (if possible)
- Impact assessment
- Initial Response: Within 48 hours
- Status Update: Within 7 days
- Fix Timeline: Depends on severity
- Critical: 24-72 hours
- High: 1-2 weeks
- Medium: 1 month
- Low: Next release
We appreciate responsible disclosure and will:
- Credit reporters in release notes (unless anonymity is requested)
- Consider bounties for critical vulnerabilities (if program exists)
When using DeadEditor:
- Always download from official sources (GitHub Releases)
- Verify checksums and signatures when available
- Keep your installation up to date
- Report suspicious behavior