BlueprintFramework/web has a list of supported versions. As of right now, only the latest version of the framework is able to receive rapid security updates.

To report a vulnerability, reach out to us at security@blueprint.zip. Refrain from publishing details about potential vulnerabilities publicly.