Skip to content

Security: stacks-network/stacks-core

Security

SECURITY.md

Security Policy

Supported Versions

Please see Releases. It is recommended to use the most recently released version.

Reporting a vulnerability

Please do not file a public issue or PR mentioning the vulnerability.

The Stacks Foundation has partnered with ImmuneFi to reward honest researchers who find and responsibly disclose security vulnerabilities in our critical code. Bounties are payable in the Stacks token (STX) for accepted, high-quality submissions.

Learn more here: https://bounty.stacks.org

Want to get in touch?

Please visit https://stacks.org/security for the most up-to-date information on our security policy.

You may also contact us with any questions or to report a vulnerabilty using the following key(s):

Name Fingerprint
security@stacks.org ABA3 7FA3 6DBB A591 B0E5 5949 0E94 D065 B32E C7E6
-----BEGIN PGP PUBLIC KEY BLOCK-----
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=yhSO
-----END PGP PUBLIC KEY BLOCK-----

There aren’t any published security advisories