# Security Policy

## Reporting a Vulnerability

If you discover a security vulnerability in Kingfisher, please follow MongoDB's responsible disclosure process:

- **Do not publicly disclose the vulnerability.**
- Report it by following the instructions at [MongoDB Vulnerability Reporting](https://www.mongodb.com/docs/manual/tutorial/create-a-vulnerability-report/).

### What to Include

- A description of the vulnerability and its potential impact
- Steps to reproduce the issue
- Any relevant logs, screenshots, or proof-of-concept code

## Supported Versions

Security updates are provided for the latest release only. We recommend
always running the most recent version of Kingfisher.

| Version | Supported |
|---|---|
| Latest release | ✅ |
| Older releases | ❌ |