The following versions of ViewTouch are currently supported with security updates:
| Version | Supported | Notes |
|---|---|---|
| 26.01.x | ✅ | Current stable release |
| < 26.01 | ❌ | End of life |
Note: Only the latest stable release receives security updates. For the latest version information, please check the project repository.
We take security vulnerabilities seriously. If you discover a security vulnerability in ViewTouch, please report it responsibly.
Please do NOT report security vulnerabilities through public GitHub issues.
Instead, please report security vulnerabilities by:
- Email: Send details to
gene@viewtouch.com - Phone: Call
541-515-5913(Gene Mosher) - GitHub Security Advisories: Use GitHub's private vulnerability reporting feature if available
When reporting a vulnerability, please include:
- Description of the vulnerability
- Steps to reproduce the issue
- Potential impact and severity
- Any suggested fixes or mitigations
- Your contact information for follow-up
- Initial Response: Within 48 hours
- Status Update: Within 7 days
- Resolution: Depends on severity and complexity
We follow responsible disclosure practices:
- Confidentiality: We will keep your report confidential until a fix is available
- Coordination: We will work with you to coordinate public disclosure
- Credit: We will credit you for the discovery (unless you prefer to remain anonymous)
- No Legal Action: We will not pursue legal action against security researchers who act in good faith
- Keep ViewTouch updated to the latest supported version
- Use strong passwords for all user accounts
- Regularly review and audit user permissions
- Monitor system logs for suspicious activity
- Keep the underlying operating system updated
- Use secure network configurations
- Follow secure coding practices
- Validate all user inputs
- Use parameterized queries for database operations
- Implement proper authentication and authorization
- Keep dependencies updated
- Conduct regular security reviews
Security updates will be released as soon as possible after a vulnerability is confirmed and a fix is developed. Updates will be:
- Announced on the ViewTouch website
- Available through the standard update channels
- Documented in release notes with appropriate detail
- Primary Contact: Gene Mosher (gene@viewtouch.com)
- Phone: 541-515-5913
- Website: http://www.viewtouch.com
- GitHub: https://github.com/ViewTouch/viewtouch
We appreciate the security research community and responsible disclosure practices. Thank you for helping keep ViewTouch secure.