Generally updating to the latest stable version will have all security issues addressed.
- Security patches are applied up to the current minor version.
- Earlier versions are not supported by default, but we will examine them on a case-by-case basis.
Version | Addressed issues | Fix |
---|---|---|
1.20.0 | CWE-611 Improper Restriction of XML External Entity Reference | #4499 |
Please report vulnerability to [email protected]. We commit to respond within 2 weeks. You may also find us in the #detekt channel of kotlinlang Slack. If you have already reported on vulnerability disclosure platform, please include its link in the report.