If you believe you have found a security issue in Research Registry, do not file a public issue with exploit details.
Instead, report:
- affected version or commit
- impact
- reproduction steps
- any suggested mitigations
This project is currently a developer preview. Shared deployments should be treated as internal/self-hosted systems and placed behind normal network controls.
This repository does not yet declare a maintainer-owned private security contact.
Before tagging a public preview release, replace this section with a real reporting path that you control, for example:
- a dedicated security inbox
- a private disclosure form
- another maintainer-monitored private channel
Do not tag or advertise a broader public preview until that contact is in place.