As this is an open-source project, there are no officially supported versions; however, we aim to keep the latest version updated.
Thank you for wanting to report a vulnerability. To get in touch, please go to Tricities Media Group's contact form and select "Security" as the purpose. This will go straight to one of the maintainers.
If this is a vulnerability of an upstream dependency, we certainly want to do what we can to update those dependencies to minimize the risk to our users.
Thanks!