Marrow projects utilize Git signatures with a signing key of 9724BD70. You can use the git verify-tag or git verify-commit commands to validate these signatures, as well as examine the signature status on GitHub directly.
The following versions of this package are actively maintained and the target of priority security-related patching.
| Version | Supported |
|---|---|
| 5.1.x | ✅ |
| 5.0.x | ❌ |
| 4.0.x | ✅ |
| < 4.0 | ❌ |
Use this section to tell people how to report a vulnerability.
Tell them where to go, how often they can expect to get an update on a reported vulnerability, what to expect if the vulnerability is accepted or declined, etc.