We actively patch only the most recent minor release of Cline. Older versions receive fixes at our discretion.

We appreciate your efforts to responsibly disclose your findings and will make every effort to acknowledge your contributions.

To report a security issue, please submit your report through our Bugcrowd Vulnerability Disclosure Program. Bugcrowd will manage communication and triage on our behalf.

When reporting, please include:

• A short summary of the issue
• Steps to reproduce or a proof of concept
• Any logs, stack traces, or screenshots that might help us understand the problem

Please keep the details private until a resolution has been reached.

If you are unable to submit through Bugcrowd, you may send an email to security@cline.bot.

Thank you for helping us keep Cline users safe.