This project follows Eclipse Foundation Vulnerability Reporting Policy.

If you think you have found a vulnerability in Eclipse Vert.x you can report it using one of the following ways:

• Contact the Eclipse Foundation Security Team
• Create a confidential issue

You can find more information about reporting and disclosure at the Eclipse Foundation Security page.

The previous major version is supported for up to two years after the release of the current major version.

For example, Eclipse Vert.x 3.9.x was supported for two years after the release of Eclipse Vert.x 4.0.0.