NeoDOS is an operating system under active development. Security is a priority, but vulnerabilities are expected.
Please do NOT report security vulnerabilities through public GitHub issues.
Send an email to neodos@alexis900.dev with:
- Description of the issue
- Reproduction steps (if applicable)
- Affected kernel version
- Target system (QEMU, real hardware)
- We will acknowledge receipt within 48 hours
- We will investigate and provide an estimate
- We will work on a fix
- A security advisory will be published when available
- NeoDOS kernel (neodos-kernel/)
- Bootloader (neodos-bootloader/)
- NEM drivers
- System tools (userbin/)
- External dependencies (report to the respective maintainer)
- Development environment (QEMU, host OS)
We thank those who responsibly report vulnerabilities. With permission, we will include them in our acknowledgments.