We aim to support the latest major version of the training materials and application. Security fixes will be provided for the most recent release.

If you discover a security vulnerability, please report it privately.

• Do not create public GitHub issues for security problems.
• Email: [email protected] (replace with your actual contact)
• Include a detailed description and steps to reproduce
• We will respond as quickly as possible and coordinate a fix

We appreciate responsible disclosure and will credit reporters in release notes if desired.

• Do not use the training application in production environments
• The provided Docker Compose disables security for ease of training (xpack.security.enabled=false)
• For real-world use, always enable authentication and TLS
• Never expose Elasticsearch or Kibana directly to the public internet

• Elasticsearch Security Documentation
• MIT License