Security issues and vulnerabilities can be reported to: contact@deniai.app.
If you discover a vulnerability, please send details privately to the email above. Include:
- Repository and deployment location (if applicable)
- Steps to reproduce
- Impact assessment (e.g., data exposure, token leakage, unauthorized access)
- Any proof-of-concept or logs
We will acknowledge your report within 72 hours and provide an initial response timeline.
- This policy covers vulnerabilities in this repository and related self-hosted deployment instructions.
- If you find an issue in third-party dependencies, report it through the maintainer channels for those packages first.
Please do not publicly disclose findings until we have had a chance to investigate and prepare a fix.