Only the latest release is supported with security updates.
If there are any vulnerabilities in setup-scarb, don't hesitate to report them.
- If you found a vulnerability in Scarb application itself, please consult its own security policy.
- If you found a vulnerability in Cairo language/compiler, please consult its own security policy.
- Use GitHub Security site for reporting vulnerabilities. You can report one here.
- Please do not disclose the vulnerability publicly until a fix is released!
- Once we have either a) published a fix, or b) declined to address the vulnerability for whatever reason, you are free to publicly disclose it.