Only the latest published version of syncthis receives security updates.
| Version | Supported |
|---|---|
| latest | Yes |
| < latest | No |
Please do not open a public issue for security vulnerabilities.
Instead, send an email to mail@michael-kuehnel.de with:
- A description of the vulnerability
- Steps to reproduce (if possible)
- The syncthis version and your environment (OS, Node version)
You can expect an initial response within 7 days. Once confirmed, a fix will be released as soon as possible and you will be credited in the release notes (unless you prefer to stay anonymous).