BookLogr provides security updates only for the latest released version.
You can always find the most recent release here: https://github.com/Mozzo1000/booklogr/releases
If you are running an older version, please upgrade before reporting a vulnerability.
We encourage responsible disclosure and provide two official reporting channels.
You can privately report a vulnerability using GitHub’s built‑in security advisory workflow:
https://github.com/Mozzo1000/booklogr/security/advisories
This allows secure communication, private patches, and coordinated disclosure.
If you prefer email, you can contact the maintainers at:
Please include:
- A clear description of the issue
- Steps to reproduce
- Potential impact
- Proof‑of‑concept (if available)
- Your environment (OS, version, configuration)
After you report a vulnerability:
- We will acknowledge your report as soon as possible
- We will investigate and validate the issue
- If confirmed, we will work on a fix
- You will be credited in the release notes unless you request anonymity
Regarding CVE, we do not currently request CVE IDs for vulnerabilities. All vulnerabilities will be documented and credited in our GitHub release notes.