Security fixes are applied to the latest development branch and the most recent tagged release that matches it.
| Version | Supported |
|---|---|
| Latest tag | Yes |
main / active release line |
Yes |
| Older releases | No |
Do not open public GitHub issues for security-sensitive bugs.
Use GitHub Security Advisories for private reporting:
- Repository Security tab
Report a vulnerability
Include the following where possible:
- affected ro-Control version
- distro and desktop session
- exact steps to reproduce
- whether privilege escalation or package operations are involved
- logs, screenshots, or proof-of-concept details
You can expect:
- an acknowledgement after triage
- confirmation if the issue is reproducible
- a fix or mitigation plan for supported versions