The following versions of TOL are currently being supported with security updates:
| Version | Supported |
|---|---|
| 3.x.x | ✅ |
| < 3.0 | ❌ |
We take the security of TOL seriously. If you have discovered a security vulnerability, please follow these steps:
- DO NOT disclose the vulnerability publicly until it has been addressed
- Email your findings to: [email protected]
- Include as much information as possible:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix (if any)
- Initial Response: Within 48 hours
- Status Update: Within 7 days
- Resolution Target: Within 30 days for critical issues
- Disclosure: 90 days after initial report or when fix is released
When using TOL:
- Always use the latest stable version
- Enable compiler security flags when building from source
- Report any suspicious behavior or potential vulnerabilities
Thank you for helping keep TOL secure!