Please report security issues through GitHub Security Advisories for this repository.

Do not open a public issue with exploit details, credentials, tokens, cookies, private keys, internal hostnames, or sensitive document content.

Only the latest released version is expected to receive security fixes while the project is early-stage.

DocGraph is designed for local-first document indexing. Operators are responsible for keeping local data directories, configuration files, browser cookies, tokens, SSH keys, and indexed document content out of public repositories and public issue trackers.