Currently, only the latest version of OCD is supported with security updates.

We take the security of OCD seriously. If you believe you have found a security vulnerability in this repository, please report it to us as described below.

Please do not report security vulnerabilities through public GitHub issues.

Instead, please report them via email to the author or by opening a private GitHub Security Advisory in this repository.

Please include the following information in your report:

• Type of issue (e.g., buffer overflow, SQL injection, cross-site scripting, etc.)
• Full paths of source file(s) related to the manifestation of the issue
• The location of the affected source code
• Any special configuration required to reproduce the issue
• Step-by-step instructions to reproduce the issue
• Proof-of-concept or exploit code (if possible)
• Impact of the issue, including how an attacker might exploit the issue

We prefer all communications to be in English.

We will try to acknowledge your report within 48 hours, and will provide a more detailed response within 5 days indicating the next steps in handling your report.