The latest release on the master branch is supported with security updates.
| Version | Supported |
|---|---|
| v30.0 | Yes |
Do not open a public issue for security vulnerabilities.
Use GitHub's built-in private vulnerability reporting:
- Go to the Security tab
- Click "Report a vulnerability"
- Fill in the details
This is the fastest way to reach us and keeps the report confidential.
Send an email to falcon1024@protonmail.com (not for general support).
Proton Mail provides post-quantum encrypted email (ML-KEM + X25519). If you are also using Proton Mail, end-to-end PQ encryption is automatic.
- Description of the vulnerability
- Steps to reproduce
- Affected version(s)
- Potential impact assessment
- Suggested fix (if any)
- Acknowledgement: within 48 hours
- Initial assessment: within 7 days
- Fix and disclosure: coordinated with the reporter
This policy covers the Tidecoin node software (tidecoind, tidecoin-qt,
tidecoin-cli, tidecoin-wallet, tidecoin-tx, tidecoin-util), including:
- Post-quantum signature schemes (Falcon-512/1024, ML-DSA-44/65/87)
- PQHD wallet key derivation
- ML-KEM-512 P2P transport encryption
- Consensus and validation logic
- RPC interface