uptime-kuma/SECURITY.md

31 lines
1.3 KiB
Markdown
Raw Normal View History

2021-08-19 02:32:57 -07:00
# Security Policy
2021-11-01 22:25:34 -07:00
## Reporting a Vulnerability
2023-02-12 08:33:37 -08:00
1. Please report security issues to https://github.com/louislam/uptime-kuma/security/advisories/new.
1. Please also create an empty security issue to alert me, as GitHub Advisories do not send a notification, I probably will miss it without this. https://github.com/louislam/uptime-kuma/issues/new?assignees=&labels=help&template=security.md
2021-11-01 22:25:34 -07:00
Do not use the public issue tracker or discuss it in public as it will cause more damage.
2021-11-01 22:25:34 -07:00
2023-02-10 01:46:44 -08:00
## Do you accept other 3rd-party bug bounty platforms?
At this moment, I DO NOT accept other bug bounty platforms, because I am not familiar with these platforms and someone has tried to send a phishing link to me by doing this already. To minimize my own risk, please report through GitHub Advisories only. I will ignore all 3rd-party bug bounty platforms emails.
2023-02-10 01:46:44 -08:00
2021-08-19 02:32:57 -07:00
## Supported Versions
2021-10-12 17:01:34 -07:00
### Uptime Kuma Versions
You should use or upgrade to the latest version of Uptime Kuma. All `1.X.X` versions are upgradable to the latest version.
2021-08-19 02:32:57 -07:00
2021-10-12 17:01:34 -07:00
### Upgradable Docker Tags
2021-10-09 21:20:15 -07:00
| Tag | Supported |
| ------- | ------------------ |
| 1 | :white_check_mark: |
| 1-debian | :white_check_mark: |
| latest | :white_check_mark: |
| debian | :white_check_mark: |
2022-04-24 07:54:06 -07:00
| 1-alpine | ⚠️ Deprecated |
| alpine | ⚠️ Deprecated |
2021-10-09 21:20:15 -07:00
| All other tags | ❌ |