Security

SECURITY.md

Security Policy

Reporting a Vulnerability

Please do not disclose vulnerabilities publicly.

Report privately to:

security@byteworthy.io

Include:

affected repository and commit/version
reproduction steps
impact summary
any mitigation notes

Response Targets

initial triage acknowledgment: within 3 business days
critical issues are prioritized first

Disclosure

Coordinated disclosure is preferred after remediation is available.

There aren’t any published security advisories