Skip to content

Security: anchore/syft

SECURITY.md

Security Policy

Supported Versions

Security updates are applied only to the most recent release, try to always be up to date.

Reporting a Vulnerability

To report a security issue, please email [email protected] with a description of the issue, the steps you took to create the issue, affected versions, and, if known, mitigations for the issue.

All support will be made on the best effort base, so please indicate the "urgency level" of the vulnerability as Critical, High, Medium or Low.

Learn more about advisories related to anchore/syft in the GitHub Advisory Database