We take security very seriously. When the recent security vulnerability affecting Helix3 was identified, we released the security update as quickly as possible. As long as you are running the latest Helix3 v3.1.2, you are protected against that known vulnerability.
Regarding the two recent Helix Ultimate releases, I'd like to clarify that they served different purposes. The first release was a security update to address a reported vulnerability, while the second release was a bug fix update to resolve issues introduced or identified after the security release. Releasing a follow-up bug fix shortly after a security update is a normal part of ensuring both security and stability.
Although Helix3 receives security and compatibility updates when necessary, it is no longer under active feature development. For new projects, we continue to recommend using Helix Ultimate, as it is our actively developed framework with ongoing enhancements and long-term support.