coolify/SECURITY.md
peaklabs-dev f3df3bbb93
docs: add improved SECURITY.md file
- new Support Policy table
- improved reporting guide for vulnerabilities
2025-11-30 16:50:04 +01:00

27 lines
1.4 KiB
Markdown

# Security
This page outlines our support policy and how to report vulnerabilities.
## Support Policy
Below you can find the support status for different versions of Coolify.
| Version | Supported | Support Status | Initial Release | End of Life Date |
| ------- | ------------------ | ---------------------------------- | --------------- | --------------------- |
| **5.x** | :white_check_mark: | Active Development | TBD | N/A - Current Version |
| **4.x** | :warning: | Security & Critical Bug Fixes Only | July 14th, 2023 | TBD |
| **3.x** | :x: | No Longer Supported | July 6th, 2022 | September 5th, 2023 |
:warning: : Limited Support
## Reporting a Vulnerability
If you find a security vulnerability in a currently supported version, please follow these steps:
1. **DO NOT** disclose the vulnerability publicly.
2. Send a detailed report to: `security@coollabs.io` or report it via [GitHub Security Advisories](https://github.com/coollabsio/coolify/security/advisories/new).
3. Include in your report:
- **Explanation:** Detailed explanation of the vulnerability.
- **Affected Versions:** Which Coolify versions are affected.
- **Reproduction:** Clear steps to reproduce the vulnerability.
- **Impact:** Assessment of the potential impact of the vulnerability.