uptime-kuma/SECURITY.md

# Security Policy

## Reporting a Vulnerability

1. Please report security issues to https://github.com/louislam/uptime-kuma/security/advisories/new.
1. Please also create a empty security issues for alerting me, as GitHub Advisory do not send a notification, I probably will miss without this. https://github.com/louislam/uptime-kuma/issues/new?assignees=&labels=help&template=security.md

Do not use the public issue tracker or discuss it in the public as it will cause more damage.

## Do you accept other 3rd-party bug bounty platforms?

At this moment, I DO NOT accept other bug bounty platforms, because I am not familiar with these platforms and someone have tried to send a phishing link to me by this already. To minimize my own risk, please report through GitHub Advisories only. I will ignore all 3rd-party bug bounty platforms emails.

## Supported Versions

### Uptime Kuma Versions

You should use or upgrade to the latest version of Uptime Kuma. All `1.X.X` versions are upgradable to the lastest version.

### Upgradable Docker Tags

| Tag | Supported          |
| ------- | ------------------ |
| 1 | :white_check_mark: |
| 1-debian | :white_check_mark: |
| latest | :white_check_mark: |
| debian | :white_check_mark: |
| 1-alpine | ⚠️ Deprecated |
| alpine | ⚠️ Deprecated |
| All other tags  | ❌ |
Create SECURITY.md 3 years ago			`# Security Policy`

Update SECURITY.md 3 years ago			`## Reporting a Vulnerability`

Update security report guide (#2762) 2 years ago			`1. Please report security issues to https://github.com/louislam/uptime-kuma/security/advisories/new.`
			`1. Please also create a empty security issues for alerting me, as GitHub Advisory do not send a notification, I probably will miss without this. https://github.com/louislam/uptime-kuma/issues/new?assignees=&labels=help&template=security.md`
Update SECURITY.md 3 years ago
Update SECURITY.md 2 years ago			`Do not use the public issue tracker or discuss it in the public as it will cause more damage.`
Update SECURITY.md 3 years ago
Update SECURITY.md 2 years ago			`## Do you accept other 3rd-party bug bounty platforms?`

			`At this moment, I DO NOT accept other bug bounty platforms, because I am not familiar with these platforms and someone have tried to send a phishing link to me by this already. To minimize my own risk, please report through GitHub Advisories only. I will ignore all 3rd-party bug bounty platforms emails.`

Create SECURITY.md 3 years ago			`## Supported Versions`

Fix some of markdownlint warnings 3 years ago			`### Uptime Kuma Versions`

Update SECURITY.md 3 years ago			You should use or upgrade to the latest version of Uptime Kuma. All `1.X.X` versions are upgradable to the lastest version.
Create SECURITY.md 3 years ago
Fix some of markdownlint warnings 3 years ago			`### Upgradable Docker Tags`

Update SECURITY.md 3 years ago			`\| Tag \| Supported \|`
			`\| ------- \| ------------------ \|`
			`\| 1 \| :white_check_mark: \|`
			`\| 1-debian \| :white_check_mark: \|`
			`\| latest \| :white_check_mark: \|`
			`\| debian \| :white_check_mark: \|`
Update SECURITY.md 3 years ago			`\| 1-alpine \| ⚠️ Deprecated \|`
			`\| alpine \| ⚠️ Deprecated \|`
Update SECURITY.md 3 years ago			`\| All other tags \| ❌ \|`