Skip to content

Security: rudderlabs/rudder-sdk-js

SECURITY.md

Security Reporting

Thank you in advance for helping us keep RudderStack secure!

Please report any security issues or vulnerabilities to security@rudderstack.com, before proceeding to post them publicly as issues on GitHub or any other public channel like the RudderStack community Slack. These issues might also affect other users, and security vulnerabilities need to be handled quickly and sometimes privately.

We will triage the issue, contact you for further instructions and make sure to take any necessary measures as needed.

Supported versions

We will fix any security bugs for the latest major.minor version of the SDK.

SDK v3

Version Supported
Latest 3.x
Older 3.x
< 3.0

SDK v1.1

Version Supported
Latest 2.x
Older 2.x
< 2.0

SDK v1

Version Supported
Latest 1.x
Older 1.x
< 1.0

We may fix the vulnerabilities in the older versions depending on the severity of the issue and the age of the release, but we are only committing to the latest version released.

There aren’t any published security advisories