Security Policy

Supported Versions

Security fixes are released for the latest version published on pub.dev.

Please report suspected vulnerabilities privately through GitHub Security Advisories:

Avoid opening a public issue for vulnerability reports until the issue has been reviewed and a fix is available.

We aim to acknowledge reports within 7 days.