We will disclose fixes for vulnerabilities in the release notes and urge you to upgrade once a new release is published. For upgrading guidelines, see our official Upgrading Guideline.
To receive update warnings in the CLI (as part of the terminal output whenever you run a command), you must use an official release binary as published on the GitHub releases page of this project.
See the install instructions for DevPod for the recommended methods of downloading an official release binary for your platform. Community maintained release binaries may not contain the version number and will therefore not be able to perform a version check.
Please report vulnerabilities to: security@loft.sh