This repository receives periodic releases, but is mostly consumed at specific Git commits. By default, the tip of main is the release artifact which is supported for all security updates. For impactful security fixes, new released versions will also be created. If you need ongoing security support for an older version of go-mysql-server, please contact DoltHub, the company behind this project.

Any security issues with go-mysql-server can be reported to security@dolthub.com.

Reports will be responded to within one business day. The majority of our team operates on Pacific Time and on a US holiday schedule.

DoltHub does not currently run a security bounty program for go-mysql-server.