| Version | Supported |
|---|---|
| Latest release | Yes |
| Older releases | No |
Only the latest release receives security updates.
If you discover a security vulnerability in DisasterConnect, please report it responsibly.
Do not open a public issue for security vulnerabilities.
Instead, contact the maintainer directly:
- GitHub: @Razee4315
Please include the following in your report:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix (if any)
- Acknowledgment within 48 hours
- Initial assessment within 1 week
- Fix or mitigation as soon as reasonably possible
This policy applies to the DisasterConnect desktop application and its source code. Third-party dependencies are managed through their own security channels.
Once a vulnerability is fixed, we will:
- Release a patched version
- Document the fix in the release notes
- Credit the reporter (unless they prefer to remain anonymous)