| Version | Supported |
|---|---|
| 0.11.x | Yes |
| 0.10.x | Yes |
| 0.9.x and older | No |
Users should upgrade to the latest Maia-2 release before reporting a problem.
Please do not open a public issue for a suspected vulnerability. Email josephtang@cs.toronto.edu, or use a private GitHub security advisory, with:
- a concise description of the issue and its impact;
- the affected Maia-2 version and environment;
- reproduction steps or a proof of concept; and
- any suggested mitigation, if known.
Do not include live credentials or private datasets. We will acknowledge the report, investigate it, and coordinate disclosure and remediation with the reporter when appropriate.
For vulnerabilities in a third-party dependency, include the relevant advisory or CVE and the installed dependency version. General usage questions and non-security bugs should use the public GitHub issue tracker.