Skip to content

Security: mcdonc/klangk

SECURITY.md

Security

Reporting a Vulnerability

klangk runs a default-closed policy on issues and pull requests: newly opened issues and PRs are closed automatically to manage AI-generated submission volume (see CONTRIBUTING.md).

Security reports are not blocked by this policy. If you've found a vulnerability, do not rely on a public issue — email it privately to chrism@plope.com instead. Auto-close never applies to reports sent to that address, and a maintainer will respond.

Please include:

  • A description of the issue and its impact.
  • Steps to reproduce or a proof of concept.
  • Any suggested remediation.

Do not open a public GitHub issue for security vulnerabilities.

There aren't any published security advisories