Security, privacy and compliance¶
Tip
At Weblate, security maintains an environment that values the privacy of our users.
Development of Weblate adheres to the Best Practices of the Open Source Security Foundation.
See also
Discovered a security issue in Weblate? Please read Product vulnerability reports.
Security updates and releases¶
Only the latest Weblate release is guaranteed to receive security updates. Learn more about Weblate releases and supported versions.
Release artifacts can be checked using published signatures, attestations, and SBOMs. See Release artifacts and verification.
Security policies¶
Product and contact information - product identity, contact, support, release, and SBOM metadata.
Security governance and assessment status - security governance documentation and assessment status.
Releases and supported versions - release cycle, security update coverage, and upgrade support.
Release artifacts and verification - release artifact inventory, SBOMs, signatures, attestations, and verification.
Dependencies - dependency inventory, vulnerability triage, update automation, and container scanning.
Vulnerability and incident handling - vulnerability reporting and disclosure.
Compliance¶
Note
Herein you will find various legal information you might need to operate Weblate in certain legal jurisdictions. It is provided as a means of guidance, without any warranty of accuracy or correctness. It is ultimately your responsibility to ensure that your use of Weblate complies with all applicable laws and regulations.
Terms of service and privacy policy¶
Note
These documents apply to Weblate deployments operated by Weblate s.r.o., such as Hosted Weblate and Weblate Cloud.
The data processing agreement can be obtained in the Customer area.