| Version | Supported |
|---|---|
| 2.x | ✅ |
| < 2.0 | ❌ |
If you discover a security vulnerability in BlackFlag ECU:
- Do NOT create a public GitHub issue
- Email security concerns to the maintainer via GitHub
- Provide detailed information about the vulnerability
- Allow 90 days for a fix before public disclosure
Security reports should relate to:
- Application vulnerabilities
- Data exposure risks
- Authentication bypasses
Out of scope:
- ECU security research (intended functionality)
- Social engineering
- Physical attacks
Built by Bad Antics Development