# Security Policy
## Supported versions
koios currently supports security fixes for the latest released series.
| 0.1.x | :white_check_mark: |
| < 0.1.0 | :x: |
## Reporting a vulnerability
Please report suspected vulnerabilities privately.
Preferred channel:
- GitHub private vulnerability reporting: https://github.com/ffimnsr/mk-rs/security/advisories/new
If private vulnerability reporting is unavailable in your environment, contact
the repository owner privately through https://github.com/ffimnsr and include:
- a description of the issue and potential impact
- reproduction steps or a proof of concept
- the affected version or configuration
- any suggested mitigations
Please do not open a public issue for undisclosed vulnerabilities.
## Response expectations
The maintainers will aim to:
- acknowledge new reports within 5 business days
- confirm severity and scope as quickly as possible
- coordinate a fix and disclosure timeline before public release
## Disclosure
Please allow time for remediation before public disclosure. Once a fix is
available, the release notes and [CHANGELOG.md](CHANGELOG.md) should document the
remediation.