Security Policy
May 20, 2026 · View on GitHub
Supported Versions
| Version | Supported |
|---|---|
| 8.x | ✅ Active support |
| 7.x | ⚠️ Critical fixes only |
| < 7.0 | ❌ End of life |
Reporting a Vulnerability
Do not open public issues for vulnerabilities, exposed secrets, bypasses, or unsafe exploitation behavior.
Email hello@adscanpro.com with:
- Affected ADscan version
- Minimal reproduction steps
- Expected impact
- Logs or screenshots with secrets removed
- Whether the issue affects LITE, PRO, docs, Docker images, or the PyPI launcher
Response Timeline
We acknowledge valid reports within 72 hours and aim to ship fixes within 14 days for critical vulnerabilities. We coordinate fixes privately when disclosure could put users or customers at risk.
Safe Disclosure
ADscan is a pentesting tool. Reports involving third-party systems must only include evidence from environments you are authorized to test.