# Security Policy

If you discover a security vulnerability, please follow the steps below to responsibly disclose it to us:

1. **Do not create a public GitHub issue or discussion post.** This could put the security of other users at risk.
2. Send a detailed report to [security@fossorial.io](mailto:security@fossorial.io) or send a **private** message to a maintainer on [Discord](https://discord.gg/HCJR8Xhme4). Include:

-   Description and location of the vulnerability.
-   Potential impact of the vulnerability.
-   Steps to reproduce the vulnerability.
-   Potential solutions to fix the vulnerability.
-   Your name/handle and a link for recognition (optional).

We aim to address the issue as soon as possible.