Only the latest version of WA+ receives security updates.
| Version | Supported |
|---|---|
| 1.1.x | ✅ |
| < 1.1.0 | ❌ |
We take the security of our users and their data very seriously. Because WA+ operates entirely locally and does not transmit data to external servers, the risk profile is limited to the local environment and browser extension APIs.
If you discover a security vulnerability in WA+, please DO NOT open a public issue. Instead, please report it privately:
- Open a Draft Security Advisory on GitHub (via the Security tab in the repository).
- Or contact the maintainer directly if contact details are provided in their GitHub profile.
Please provide a detailed explanation of the vulnerability and steps to reproduce. We will acknowledge receipt of your vulnerability report and strive to send you regular updates about our progress.