# Security Policy

## Supported Versions

| Version | Supported |
|---|---|
| Latest | Yes |
| Older | No |

Only the latest version receives security updates. Please update to the latest release.

## Reporting a Vulnerability

If you discover a security vulnerability, please report it responsibly:

1. **Do not** open a public issue
2. Email: **mauriceboe@icloud.com**
3. Include a description of the vulnerability and steps to reproduce

You will receive a response within 48 hours. Once confirmed, a fix will be released as soon as possible.

## Scope

This policy covers the TREK application and its Docker image (`mauriceboe/trek`).

Third-party dependencies are monitored via GitHub Dependabot.