# Security policy

Security is an important concern for Solus. Please report vulnerabilities if you believe that Solus is affected. We accept vulnerability reports for both software developed by the Solus project ([github.com/getsolus](https://github.com/getsolus)) as well as vulnerabilities in software packaged by Solus.

## Reporting a vulnerability

A vulnerability in can be reported in the following ways:

- By creating a security issue [on GitHub](https://github.com/getsolus/packages/security/advisories/new).
- By contacting security@getsol.us.

## Supported versions

- **Packages**: both the *unstable* and *stable* ('shannon') releases of Solus are supported with security updates. Please report a security issue if you feel that one is present in either release.
- **Software**: both the latest tagged release and master/main branch are supported.