Only the latest version of each of the following packages receives security updates:
- @accordproject/concerto-analysis
- @accordproject/concerto-core
- @accordproject/concerto-cto
- @accordproject/concerto-linter
- @accordproject/concerto-types
- @accordproject/concerto-util
- @accordproject/concerto-vocabulary
- @accordproject/concerto-metamodel
- @accordproject/concerto-codegen
If you've found a security issue with one of the above published packages, please write into security@accordproject.org and mention:
- this repo
- reproduction steps
- severity/impact of the vulnerability
Once you've done that, our security team will reach out to you.