# Security policy

## Supported versions

As for now, all versions should be included in the supported versions.

However, we did not find a way to update already published versions;
this means that sadly, any discovered vulnerability will need you to update the dependency.

Though our goal is to introduce new features,
we think the transition from `0.1.x` to `0.2.x` will happen with the full implementation of the composer.
After that time we will still support the versions `0.1.x` until the arrival of the versions `0.3.x`.

| Version | Supported |
|---------|-----------|
| `0.1.x` | ✅         |
| `0.1.0` | ❌         |

## Reporting a vulnerability

First, if you are reading this to report a vulnerability, thank you; your help will be incredibly valuable.

To take contact with our team, we suggest you creating an Issue, or a Pull request.
After that wait, we will come as soon as we can,
and we will then be able to settle down and hopefully fix the issue you found.