The following versions of Svr are currently being supported with security updates.

Please do not report security vulnerabilities through public GitHub issues.

Send a detailed description of the security issue to the security@ email handle of TypeScriptLibs' website. Please understand that only security issues regarding the library can be addressed.

If you found a security issue in TypeScript, please contact them instead. How to report security issues to TypeScript is described at github.com/microsoft/typescript.

When TypeScriptLibs receives a secruity report, the review process will take about four weeks. We might ask for more details or assistence in understanding the security impact. In case of a valid report, a security advisory will be created and a security update released.