The latest released version of Pyroscope is supported.
Please email security@pyroscope.io, and we will respond as quickly as possible.
Please provide as much information as possible:
-
A detailed description of the vulnerability we can use to reproduce your findings.
-
Who can exploit this vulnerability and what would they gain. An attack scenario.
-
Information about known exploits if any.
If the vulnerability is considered valid and accepted, a patch will be made for the latest pyroscope version. If the vulnerability is deemed invalid, no further action is required.