Skip to content

Security: AI4RA/.github

Security

Report a vulnerability

SECURITY.md

Security Policy

Thank you for helping protect AI4RA repositories and contributors.

Reporting a vulnerability

Please do not report security vulnerabilities in public issues or pull requests.

If private vulnerability reporting is enabled for the affected repository, use that channel. Otherwise, report the issue through the AI4RA contact page and clearly note that it is a security report:

https://ai4ra.uidaho.edu/contact/

What to include

Please include:

  • the affected repository and branch, release, or commit when known
  • a clear description of the issue
  • steps to reproduce or validate the problem
  • the potential impact
  • any suggested mitigation if you have one

Do not include secrets, credentials, or personal data in public channels.

Response approach

AI4RA maintainers will review reports, confirm impact, and coordinate a fix and disclosure path appropriate to the repository and risk level.

Maintainer note

If AI4RA later creates a dedicated security mailbox, update this file to point reporters there directly.

There aren’t any published security advisories