diff options
author | Simon McVittie <smcv@collabora.com> | 2023-03-15 12:45:55 +0000 |
---|---|---|
committer | Simon McVittie <smcv@collabora.com> | 2023-03-17 13:36:50 +0000 |
commit | 319832190f44e16d4b9315b59cc8aa0b1c73f0e5 (patch) | |
tree | cacf84be6a902c62b04569ba4bb079fe3e36eba8 | |
parent | c9cbdf5179ee964bd2b26bc10527d160356f50b1 (diff) | |
download | flatpak-319832190f44e16d4b9315b59cc8aa0b1c73f0e5.tar.gz |
security policy: Downgrade 1.12.x, 1.10.x to "supported if feasible"
We have too many branches and too few maintainers to be able to treat
old-stable branches as fully supported.
Helps: #5352
Signed-off-by: Simon McVittie <smcv@collabora.com>
-rw-r--r-- | SECURITY.md | 10 |
1 files changed, 8 insertions, 2 deletions
diff --git a/SECURITY.md b/SECURITY.md index 76032e94..8fb54d46 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -16,11 +16,17 @@ please check | 1.15.x | :hammer: | Development branch, releases may include non-security changes | | 1.14.x | :white_check_mark: | Stable branch, recommended for use in distributions | | 1.13.x | :x: | Old development branch, no longer supported | -| 1.12.x | :white_check_mark: | Old stable branch, still supported | +| 1.12.x | :warning: | Old stable branch, security fixes applied if feasible | | 1.11.x | :x: | Old development branch, no longer supported | -| 1.10.x | :white_check_mark: | Old stable branch, still supported | +| 1.10.x | :warning: | Old stable branch, security fixes applied if feasible | | <= 1.9.x | :x: | Older branches, no longer supported | +The latest stable branch (currently 1.14.x) is the highest priority for +security fixes. +If a security vulnerability is reported under embargo, having new releases +for older stable branches will not always be treated as a blocker for +lifting the embargo. + ## Reporting a Vulnerability If you think you've identified a security issue in Flatpak, please DO NOT |