Use this section to tell people about which versions of your project are currently being supported with security updates.
| Version | Supported |
|---|---|
| 5.1.x | ✅ |
| 5.0.x | ❌ |
| 4.0.x | ✅ |
| < 4.0 | ❌ |
Use this section to tell people how to report a vulnerability.
Tell them where to go, how often they can expect to get an update on a reported vulnerability, what to expect if the vulnerability is accepted or declined, etc. Security Policy Supported Versions We actively maintain and provide security updates for the following versions of our project:
Version Supported 5.1.x ✅ Fully supported 5.0.x ❌ No longer supported 4.0.x ✅ Supported with critical patches only < 4.0 ❌ No longer supported Note: We strongly recommend upgrading to the latest supported version to ensure you receive timely security patches and improvements.
Reporting a Vulnerability Your security is our priority. If you discover a potential security vulnerability, please report it responsibly by following the guidelines below:
How to Report: Submit detailed information about the vulnerability via our dedicated security contact form at www.waveform-tech.com/security or email security@waveform-tech.com (if applicable). Information to Include: Please provide a clear description of the issue, steps to reproduce, impact assessment, and any relevant proof-of-concept or exploit code. Response Timeline: We acknowledge all valid reports within 48 hours. Our security team will investigate and provide updates on the status of the report every 7 calendar days until resolution. Resolution Process: If the vulnerability is confirmed, we will prioritize a fix and release a patch as soon as possible. We will notify you once the issue is resolved and provide credit if desired. If Declined: If the report is not considered a security issue or is out of scope, we will communicate the reasons clearly. Confidentiality: We ask that you keep the details of the vulnerability confidential until a fix is released to protect all users. Security Best Practices Always use the latest supported version of our software. Follow our recommended configuration and deployment guidelines. Regularly monitor our security advisories at www.waveform-tech.com/security-advisories. Report any suspicious activity or security concerns promptly. Thank you for helping us keep Waveform Tech secure.