# Security Policy

## Reporting a Vulnerability

Vulnerabilities in Corda can be reported by following the Corda responsible disclosure policy:

https://www.corda.net/participate/security.html

## Security Advisories

Security announcements affecting Corda will be published on the Corda mailing list. People can subscribe to corda-announce@groups.io to receive security updates when they are made available.

## Supported Versions

Security updates are made for the latest version of Corda.

| Version | Supported          |
| ------- | ------------------ |
| 4.x     | :white_check_mark: |
| 3.x     | :x:                |
| < 3     | :x:                |