jsonlt-ruby is currently in early development. Security updates apply to the latest version only.
| Version | Supported |
|---|---|
| 0.x.x | ✅ |
jsonlt-ruby supports Ruby versions that have not reached end-of-life (EOL). When a Ruby version reaches EOL, the next minor release drops support for that version.
Supported versions start at Ruby 3.2
See the Ruby Maintenance Branches page for the official EOL schedule.
If you discover a security vulnerability in jsonlt-ruby, please report it responsibly.
Do not open a public GitHub issue for security vulnerabilities.
Instead, please use GitHub's private vulnerability reporting feature:
- Go to the Security tab of the repository
- Click "Report a vulnerability"
- Fill out the form with details about the vulnerability
For more information, see Privately reporting a security vulnerability.
When reporting, please include:
- A description of the vulnerability
- Steps to reproduce the issue
- Potential impact assessment
- Any suggested fixes (optional)
- Acknowledgment - Expect acknowledgment of your report within 48 hours
- Assessment - Investigation and severity assessment within 7 days
- Resolution - Critical vulnerabilities receive fixes within 30 days
- Disclosure - Disclosure timing coordinated with you
TBD
TBD
Thank you to the security research community for identifying and responsibly disclosing vulnerabilities.