|
| 1 | +#Security Policy |
| 2 | + |
| 3 | +##Reporting a Vulnerability |
| 4 | + |
| 5 | +python-gitlab is a thin wrapper and you should generally mostly ensure your transitive dependencies are kept up-to-date. |
| 6 | + |
| 7 | +However, if you find an issue that may be security relevant, please |
| 8 | +[Report a security vulnerability](https://github.com/python-gitlab/python-gitlab/security/advisories/new) |
| 9 | +on GitHub. |
| 10 | + |
| 11 | +Alternatively, if you cannot report vulnerabilities on GitHub, |
| 12 | +you can email the currently active maintainers listed in[AUTHORS](https://github.com/python-gitlab/python-gitlab/blob/main/AUTHORS). |
| 13 | + |
| 14 | +##Supported Versions |
| 15 | + |
| 16 | +We will typically apply fixes for the current major version. As the package is distributed on |
| 17 | +PyPI and GitLab's container registry, users are encouraged to always update to the latest version. |