1# Security Policy
2
3## Supported Versions
4
5As of February 2022 (and until this document is updated), the latest version `v4` is supported.
6
7## Reporting a Vulnerability
8
9If you think you found a vulnerability, and even if you are not sure, please report it to jwt-go-security@googlegroups.com or one of the other [golang-jwt maintainers](https://github.com/orgs/golang-jwt/people). Please try be explicit, describe steps to reproduce the security issue with code example(s).
10
11You will receive a response within a timely manner. If the issue is confirmed, we will do our best to release a patch as soon as possible given the complexity of the problem.
12
13## Public Discussions
14
15Please avoid publicly discussing a potential security vulnerability.
16
17Let's take this offline and find a solution first, this limits the potential impact as much as possible.
18
19We appreciate your help!
View as plain text