GRADE is currently in pre-release development. Security fixes are applied to the latest commit on the main branch. No stable release series is yet designated for long-term support.
| Version | Supported |
|---|---|
main (latest) |
Yes |
| Older commits | No |
Please do not report security vulnerabilities through public GitHub Issues, pull requests, or discussion threads.
Instead, disclose vulnerabilities privately by opening a GitHub private security advisory:
You can also contact the maintainers listed in CODEOWNERS directly if you are unable to use the advisory workflow.
When reporting, please include:
- A description of the vulnerability and the potential impact.
- Steps to reproduce or a proof-of-concept (if available).
- Any suggested remediation you have in mind.
We aim to acknowledge reports within 3 business days and to provide a remediation timeline within 10 business days.