Only the versions in the Production Queue are supported. The support is limited to the latest minor version.
If you discover a security vulnerability in Rune, we encourage you to report it to us promptly. Please follow these guidelines to ensure a smooth and effective resolution process:
-
Draft an Issue: Report the issue directly in the issue section of this project.
-
Details: Include as much detail as possible about the vulnerability. This should include the version of Rune you are using, steps to reproduce the issue, and any potential impact.
-
Response Time: Upon receipt of your report, we will acknowledge it within a week. We will provide you with regular updates on the status of the investigation, typically every 5-7 business days.
-
Resolution Process: If the vulnerability is confirmed, we will work on a fix and aim to release it as quickly as possible. You will be credited for the discovery unless you wish to remain anonymous. If the vulnerability is declined, we will provide a detailed explanation.
Thank you for helping us keep Rune secure. Your efforts are greatly appreciated.