NoKV is still evolving quickly. Security fixes are expected to land on the latest release line and main.
| Version | Supported |
|---|---|
main |
Yes |
| latest tagged release line | Yes |
| older releases | Best effort only |
At the time of writing, the latest tagged release is v0.8.0.
Preferred path:
- Use GitHub's private vulnerability reporting for this repository if it is available.
- Include the affected version, impact, reproduction steps, and any proof-of-concept details needed to reproduce the issue.
If private reporting is not available:
- Open a minimal public issue asking for a private security follow-up.
- Do not include exploit details, secrets, crash artifacts with sensitive data, or full weaponized proof-of-concept material in the public issue.
Please include as much of the following as possible:
- affected commit, branch, tag, or release
- component or package path
- configuration needed to trigger the issue
- reproduction steps
- impact assessment
- suggested fix or mitigation, if known
- Initial acknowledgement target: within 7 days
- Status update target: within 14 days when the report is actionable
These are project targets, not contractual SLAs.
Please give the maintainer reasonable time to assess and fix the issue before public disclosure.
When a fix is available, the project may disclose:
- affected versions
- impact summary
- mitigation guidance
- fix commit or release