Generally updating to the latest stable version will have all security issues addressed.

• Security patches are applied up to the current minor version.
• Earlier versions are not supported by default, but we will examine them on a case-by-case basis.

Please report vulnerability to security@detekt.dev. We commit to respond within 2 weeks. You may also find us in the #detekt channel of kotlinlang Slack. If you have already reported on vulnerability disclosure platform, please include its link in the report.