We release security updates for the latest major version of EngineScript. Please ensure you are running the latest version to receive security patches.
| Version | Supported |
|---|---|
| latest | ✅ |
| older | ❌ |
If you discover a security vulnerability in EngineScript, please follow these steps:
- Do not open a public issue.
- Email us at [email protected] with details of the vulnerability.
- Include:
- A clear description of the issue
- Steps to reproduce (if applicable)
- Any relevant logs or screenshots
- Your contact information for follow-up
We will acknowledge your report within 5 business days and work with you to resolve the issue promptly.
- Always keep your EngineScript installation and dependencies up to date.
- Use strong, unique passwords for all accounts.
- Restrict SSH and admin access to trusted IPs.
- Regularly back up your data.
- Review and apply security updates as soon as they are available.
We follow a responsible disclosure process. Once a vulnerability is confirmed and a fix is available, we will publish a security advisory and credit the reporter (unless anonymity is requested).
Thank you for helping keep EngineScript and its users safe!