The current major version of Benthos continually receives security updates. We recommend that users maintain a reasonable upgrade plan that follows current releases of Benthos.

If you have found or suspect to have found a vulnerability in Benthos then please proceed to report it to security@benthos.dev.

Please note, we do not operate a bug bounty program. However, we deeply appreciate any contributions that guide us towards building a better and safer project.