1# Security Policy 2 3## Supported Versions 4 5This project will always provide security fixes for the latest two released 6versions. E.g. if the latest version is v0.28.x, then we will provide security 7fixes for both v0.28.x and v0.27.y, but no later versions. 8 9## Reporting a Vulnerability 10 11In case you think to have found a security issue with libgit2, please do not 12open a public issue. Instead, you can report the issue to the private mailing 13list [security@libgit2.com](mailto:security@libgit2.com). We will acknowledge 14receipt of your message in at most three days and try to clarify further steps. 15