OSOlogic is in active pre-release development (alpha → beta). Security fixes are
applied to the main branch and the latest tagged release.
| Version | Supported |
|---|---|
main |
✅ |
| latest release | ✅ |
| older releases | ❌ |
Please do not open public issues for security vulnerabilities.
Industrial control systems have real-world safety implications. If you discover a vulnerability — especially anything affecting the runtime scan cycle, the I/O layer, the gateways, or authentication — report it privately:
- Email: osologic.team@gmail.com
- Alternatively, use GitHub's private vulnerability reporting on this repository (Security → Report a vulnerability).
Please include:
- A description of the vulnerability and its impact.
- Steps to reproduce (proof-of-concept if possible).
- Affected component(s) and version/commit.
- Any suggested mitigation.
- We acknowledge your report within 5 business days.
- We investigate and confirm the issue, and agree on a remediation timeline.
- We prepare a fix and, where relevant, a coordinated disclosure and CVE.
- We credit reporters who wish to be named once the fix is released.
Thank you for helping keep industrial automation safe and open.