Only the latest version is considered for security updates.

Please do not report security vulnerabilities through public GitHub issues.

The easiest way to report a security issue is privately through GitHub. See Privately reporting a security vulnerability for full instructions.

Alternatively, you can report a security issue via e-mail to the tnz maintainers.

The maintainers intend to address security vulnerabilities of medium or higher severity within 60 days of being publicly known. An initial response should be made in less than 14 days. Expect critical vulnerabilities to be fixed rapidly after they are reported. Refer to the linked OpenSSF vulnerability response process for more details.

All content in this repository, including code, been provided under the associated open source software license and IBM is under no obligation to provide enhancements, updates, or support. Developers produced this code as an open source project (not as an IBM product), and IBM makes no assertions as to the level of quality nor security.

See https://github.com/IBM#ibm-public-repository-disclosure.