# Security Policy
This document explains how to contact the Let's Encrypt security team to report security vulnerabilities.

## Supported Versions
| Version | Supported |
| ------- | ----------|
| >= v3   | &check; |
| v2      | &cross; |
| v1      | &cross; |

## Reporting a vulnerability

Please see [https://letsencrypt.org/contact/#security](https://letsencrypt.org/contact/#security) for the email address to report a vulnerability. Ensure that the subject line for your report contains the word `vulnerability` and is descriptive. Your email should be acknowledged within 24 hours. If you do not receive a response within 24 hours, please follow-up again with another email.