I take security bugs in very seriously, and I release patches for security vulnerabilities asap.
I appreciate your efforts to responsibly disclose your findings, and will make every effort to acknowledge your contributions.
Which versions are eligible for security patches:
Version | Released | Supported | Platform |
---|---|---|---|
>= 1.4.3 | After Dec 2020 | ✅ | This runs on Eclipse 4.6 (Neon) (released Jun 2016) and newer, Java 8 JRE/JDK and newer. |
< 1.4.3 | Feb 2020 | ❌ |
Please report security vulnerabilities to [email protected].
I will try hard to respond within 24 hours.
If the issue is confirmed, I will release a patch as soon as possible depending on complexity, hopefully within days.
But I am working on this alone, and I have a full time job.
Please be understanding, s**t can happen (think vacations, work crunch time, emergencies, hit by a bus, etc. :-)