The latest patch versions of v1 releases are supported for security updates.

Supported versions of PHP for this policy can be found here:

Supported PHP Versions

If you believe you have found a security vulnerability, you can report it using the following form:

Security Advisory Form

Please do not report security vulnerabilities publicly until a resolution has been applied.