# Security Policy
## Supported Versions
Security fixes are applied to the latest release series.
| Latest | supported |
| Older | unsupported |
## Reporting a Vulnerability
Use GitHub Security Advisories for private disclosure:
- <https://github.com/loadingalias/cargo-rail/security/advisories/new>
If private advisories are unavailable in your environment, open a GitHub issue only to request a private contact channel.
Do not include vulnerability details, proof-of-concept code, affected versions, or reproduction steps in public.