# Security Policy

## Supported Versions

Only the latest release of rust-rpxy is actively maintained.
Older versions may not receive security updates.

## Reporting a Vulnerability

If you believe you have found a security vulnerability in rust-rpxy:

- Please use **[GitHub's Private vulnerability reporting](../../security/advisories/new)** feature.
- Do **not** create a public Issue for security problems.

We will review the report as soon as possible and get back to you.
Please allow a reasonable amount of time for investigation and fixes.

## Notes

- This project is primarily maintained based on the code owner's personal interests, not on commercial demand.
- Reports are handled on a best-effort basis.
- If you need guaranteed response times or dedicated support, please consider sponsoring or maintaining your own fork.