If you discover a security vulnerability in upstack, please report it responsibly:

1. Do NOT open a public issue.
2. Use GitHub Security Advisories to report privately.

We will acknowledge your report within 48 hours and work with you on a fix.

• Skills (skills/*/SKILL.md)
• Install script (install.sh)
• Bin utilities (bin/)
• Update check and config mechanisms