Only the latest version will be supported with security updates. We will not maintain old branches. For this reason, you should attempt to always use the latest released version.
To privately report a vulnerability in Av1an, please visit our advisories page and use the button to report a vulnerability. We will review it as soon as possible.
For vulnerabilities in dependencies, please open a pull request updating the dependency to a patched version.