Security updates are provided only for the latest version available in the repository.
Users are strongly encouraged to keep their local copy up to date and use the most recent commit or the latest tagged release whenever possible.
| Version | Supported |
|---|---|
Latest release / main |
✅ |
| Older releases | ❌ |
| Development forks | ❌ |
The security of GNSSTimeServer is taken seriously. If you discover a security vulnerability, please report it responsibly instead of creating a public GitHub issue.
Please open a GitHub Security Advisory (preferred), or contact the project maintainer privately through GitHub if Security Advisories are not available.
When reporting a vulnerability, please include as much information as possible:
- A clear description of the issue.
- The affected version or commit hash.
- Steps required to reproduce the problem.
- The potential impact.
- Any proof-of-concept code, logs, or screenshots that help demonstrate the issue.
After receiving your report:
- An initial acknowledgment will normally be provided within 7 days.
- The report will be investigated to determine its validity and severity.
- If the issue is confirmed, a fix will be developed and included in a future release or commit.
- You may be contacted for additional information during the investigation.
- Once a fix is available, appropriate credit will be given to the reporter unless they request to remain anonymous.
Please do not publicly disclose security vulnerabilities until they have been investigated and, where appropriate, a fix has been made available. Responsible disclosure helps protect users of the project.
Thank you for helping improve the security and reliability of GNSSTimeServer.