These versions of license-compliance-action
are currently being supported with security updates.
Version | Supported |
---|---|
1.x.x | ❌ |
It's unclear to me if any user can add a security advisory report. If you can, do it! Else reach out if with a regular issue. Try to limit the amount of detail since the communication is public. I will then reach out so we can have a private conversation. Please prepare proof of the security vulnerability, and ideally a mitigation strategy.