Ved is an early-stage open source project.
Security considerations are taken seriously as the runtime and tooling evolve.
At this stage, no stable releases are published.
Security fixes will be applied to the main development branches.
If you discover a potential security issue:
- Do not open a public issue
- Report the concern privately to the project maintainers
Include:
- description of the vulnerability
- steps to reproduce
- potential impact
- suggested mitigation (if known)
Reports will be reviewed and acknowledged as soon as reasonably possible.
Security considerations may include:
- runtime isolation guarantees
- persistence integrity
- execution determinism violations
- tooling or CLI vulnerabilities
- dependency risks
As the project matures, formal disclosure and response timelines will be established.
We encourage responsible reporting to allow fixes before public disclosure.