# Security Policy ## Supported Versions Security patches target the latest release and the `main` branch. We recommend always running the most recent version. ## Reporting a Vulnerability Preferred method: use GitHub's private vulnerability reporting flow: https://github.com/arc53/DocsGPT/security Then click **Report a vulnerability**. Alternatively, email us at: security@arc53.com We aim to acknowledge reports within 48 hours. ## Incident Handling For the public incident response process, see [`INCIDENT_RESPONSE.md`](./.github/INCIDENT_RESPONSE.md). If you believe an active exploit is occurring, include **URGENT** in your report subject line.