We currently support the latest main branch of Launchy. Security fixes are applied and released on a best-effort basis. If you are using a fork or a custom build, please keep it up-to-date with the upstream main branch.

If you discover a security vulnerability:

1. Do not file a public issue.
2. Email security@lbenicio.dev with a description of the issue, steps to reproduce, and any proof-of-concept details.
3. We will acknowledge receipt within 72 hours and provide an estimated timeline for a fix.
4. Once a fix is available, we will coordinate disclosure with you to ensure users can update promptly.

• Always download builds from trusted sources.
• Keep macOS and Launchy updated to the latest versions.
• Avoid running or modifying the codebase with elevated privileges unless necessary.

Thank you for helping keep Launchy secure.