evitaDB is currently in active development and fixes are back ported only to a few recent versions.
| Version | Supported |
|---|---|
| 2024.12.x | ✅ |
| 2024.11.x | ✅ |
| < 2024.11 | ❌ |
If you discover any vulnerability that could be exploited by malicious actors, please follow these steps:
- Contact us: Send an email to [email protected]
- Do not disclose publicly: Refrain from publishing the vulnerability details until we’ve confirmed a fix or provided guidance.
- Include details: Provide clear information about the nature of the vulnerability, including steps to reproduce.
We appreciate the efforts of the security community to responsibly disclose vulnerabilities. As a token of gratitude, we may publicly thank you once the vulnerability is confirmed and fixed (unless you prefer to remain anonymous).
To exchange sensitive information safely, we support encryption via PGP.
- Public PGP Key: Download our public key
- Fingerprint:
9D11 49B0 C74E 939D D766 C7A9 3DE3 CDCC F660 797F
Import the recipient’s public key:
gpg --import recipient_public_key.ascVerify the key:
gpg --fingerprint [email protected]Ensure the fingerprint matches what’s listed above or on our official site.
Encrypt your file or message:
gpg --output message.enc --encrypt --recipient [email protected] message.txtSend the encrypted file:
Attach or otherwise transmit message.enc.