To report a security vulnerability in swift-openssl, please use GitHub Security Advisories.
Do not file a public issue.
When reporting, please include:
- A description of the vulnerability
- Steps to reproduce or a proof of concept
- Potential impact assessment
We will acknowledge receipt within 7 days and provide an initial assessment as soon as possible.
This package is pre-1.0 (SemVer major version zero). Only the latest minor release receives security fixes.
| Version | Supported |
|---|---|
| 0.1.x | ✅ |
| < 0.1 | ❌ |
This package wraps OpenSSL via Swift's C interoperability.
Vulnerabilities in the underlying C library should be reported directly to the OpenSSL project:
- OpenSSL: See openssl/openssl SECURITY.md