If you discover a security vulnerability in any F² AI product, please report it responsibly.
Do NOT open a public GitHub issue for security vulnerabilities.
Email: security@fsquared.ai
Include:
- Description of the vulnerability
- Steps to reproduce
- Affected product(s) and version(s)
- Potential impact
| Action | Timeframe |
|---|---|
| Acknowledgment | Within 48 hours |
| Initial assessment | Within 5 business days |
| Fix or mitigation | Depends on severity |
| Public disclosure | After fix is deployed |
This policy covers all F² AI products:
All production systems use TLS 1.3. Sensitive data is encrypted with AES-256-GCM.
We support security patches for the current production release of each product.