1# Security Policy
 2
 3## Supported Versions
 4
 5Latest tag and tip are supported.
 6
 7Changes are not backported, please verify any issue against the latest tag and tip.
 8
 9## Reporting a Vulnerability
10
11Report vulnerabilities either via [GitHub's private reporting flow](https://github.com/microcosm-cc/bluemonday/security/advisories/new) or via email to the security@ alias of geomys.org.
12
13There is no bug bounty program but security issues will be taken seriously and resolved as soon as possible.