Pterodactyl-Panel/SECURITY.md

22 lines
1.2 KiB
Markdown
Raw Normal View History

2020-05-26 00:08:47 +02:00
# Security Policy
## Supported Versions
The following versions of Pterodactyl are receiving active support and maintenance. Any security vulnerabilities discovered must be reproducible in supported versions.
| Panel | Daemon | Supported |
| ----- | ------------ | ------------------ |
2021-02-25 05:44:08 +01:00
| 1.2.x | wings@1.2.x | :white_check_mark: |
| 1.1.x | wings@1.1.x | :white_check_mark: |
| 1.0.x | wings@1.0.x | :x: |
| 0.7.x | daemon@0.6.x | :x: |
2020-05-26 00:08:47 +02:00
| 0.6.x | daemon@0.5.x | :x: |
| 0.5.x | daemon@0.4.x | :x: |
## Reporting a Vulnerability
Please reach out directly to any project team member on Discord when reporting a security vulnerability, or you can send an email to `dane [ät] pterodactyl.io`.
We make every effort to respond as soon as possible, although it may take a day or two for us to sync internally and determine the severity of the report and its impact. Please, _do not_ use a public facing channel or GitHub issues to report sensitive security issues.
As part of our process, we will create a security advisory for the affected versions and disclose it publicly, usually two to four weeks after a releasing a version that addresses it.