Security policy

By default, GitHub's bots crawl rules_ll for security vulnerabilities wherever possible.

The rules_ll developers place a high emphasis on fixing any vulnerabilities, so please don't hesitate to send a report if something doesn't look right.

Supported versions

rules_ll always supports just the latest tag. Consider all older versions as unsupported and deprecated.

Reporting a vulnerability

Please prefer reporting vulnerabilities via GitHub.

If you prefer communication via email please contact aaron@eomii.org and jannis@eomii.org.

Vulnerability disclosure and advisories

See Advisories for publicly disclosed vulnerabilities.