Skip to content

Security: software-mansion/setup-scarb

SECURITY.md

Security Policy

Supported Versions

Only the latest release is supported with security updates.

Reporting a Vulnerability

If there are any vulnerabilities in setup-scarb, don't hesitate to report them.

  1. If you found a vulnerability in Scarb application itself, please consult its own security policy.
  2. If you found a vulnerability in Cairo language/compiler, please consult its own security policy.
  3. Use GitHub Security site for reporting vulnerabilities. You can report one here.
  4. Please do not disclose the vulnerability publicly until a fix is released!
  5. Once we have either a) published a fix, or b) declined to address the vulnerability for whatever reason, you are free to publicly disclose it.

There aren’t any published security advisories