Security fixes are provided for the latest release on the main branch and the most recent semver tag.
| Version | Supported |
|---|---|
| Latest release | Yes |
| Older releases | Best effort |
If you discover a security issue in lerobot-go, please report it responsibly.
Preferred channel: GitHub Security Advisories
Alternative: email security@io-ai.tech with:
- A description of the vulnerability
- Steps to reproduce
- Impact assessment (if known)
- Your contact information for follow-up
Please do not open a public GitHub issue for security vulnerabilities.
- Acknowledgment: within 3 business days
- Initial assessment: within 7 business days
- Fix or mitigation plan: as soon as reasonably possible, depending on severity
We will coordinate disclosure with reporters and credit them in the advisory when appropriate.
This policy covers the lerobot-go Go module, CLI, and official release artifacts published by IO-AI.TECH at github.com/ioai-tech/lerobot-go.