This document outlines how security-related issues should be reported for the METAR Decoder application.
Because this project distributes only a compiled Windows installer and updates are released manually, the latest version is the only one supported.
| Version | Supported |
|---|---|
| v1.0.0 & Above | βοΈ Yes β actively supported |
| < 1.0 | β No β unsupported |
Only the most recent release receives fixes, improvements, and security attention.
If you discover a security issue, vulnerability, or behavior that could compromise users:
- Do NOT open a public issue.
- Email the maintainer directly at:
dev.kingofrolls@gmail.com - Provide:
- A clear description of the vulnerability
- Steps to reproduce
- Your Windows version
- Screenshots or logs if applicable
You can expect a response within 7 days, and resolution status will be communicated privately until a fix or updated release is ready.
Valid security-related concerns include:
- Behavior that could compromise user data
- Installation exploits
- Unexpected system-level access
- Malware false positives that may indicate packaging issues
- Integrity or tampering concerns with the installer
Non-security bugs (UI, decoding errors, crashes, etc.) should be submitted through the Bug Reports issue template or discussion thread.
Thank you for helping keep METAR Decoder safe and reliable for all users.
Security reports are taken seriously and handled with confidentiality.
β Rolls Development