Security patches target the latest release and the main branch. We recommend always running the most recent version.
Preferred method: use GitHub's private vulnerability reporting flow: https://github.com/arc53/DocsGPT/security
Then click Report a vulnerability.
Alternatively, email us at: security@arc53.com
We aim to acknowledge reports within 48 hours.
For the public incident response process, see INCIDENT_RESPONSE.md. If you believe an active exploit is occurring, include URGENT in your report subject line.