Security fixes are currently targeted at the latest development branch and the most recent tagged release.
Please do not open public GitHub issues for security-sensitive reports.
Use one of these private channels:
- GitHub Private Vulnerability Reporting for this repository, if enabled:
https://github.com/DMLatrofa/whats-the-backup/security/advisories/new
When reporting by email, use the subject line Whats The Backup security report and include:
- A short description of the issue
- Impact and affected surfaces
- Reproduction steps
- Any proof-of-concept material that is safe to share
- Your preferred contact details for follow-up
Do not attach real WhatsApp exports, screenshots of private conversations, or personal media when reporting security issues.