# Security Policy

> Part of **Damru** — the open-source, Android-native stealth browser automation framework (Redroid + Playwright + CDP) for web scraping, automation testing, and anti-bot / fingerprinting research.

*Part of the Damru open-source browser automation project.*

## Supported Versions

Damru is currently in Beta. We provide security updates and patches primarily for the latest `main` branch. 

| Version | Supported          |
| ------- | ------------------ |
| `main`  | :white_check_mark: |
| `< 1.0` | :x:                |

## Reporting a Vulnerability

**Please do not report security vulnerabilities through public GitHub issues.**

If you discover a vulnerability or a significant fingerprinting leak in Damru's stealth architecture, please email `contact@damru.dev` directly.

We will acknowledge receipt of your vulnerability report within 48 hours and strive to send you regular updates about our progress. If the vulnerability poses a critical risk to users deploying the framework, we will expedite the patch.

### What to include in your report:
*   A description of the vulnerability or fingerprinting leak.
*   Steps to reproduce the issue (including any specific anti-bot sites or test scripts).
*   Your OS environment and whether you are using Redroid or MuMu Player.

Thank you for helping keep Damru the apex predator of browser automation!

---

## Related

- [Main README](README.md)
- [Contributing Guide](CONTRIBUTING.md)
- [Legal Policy](LEGAL.md)
- [Verification Proof](PROOF.md)

<sub>Keywords: Android browser automation · stealth automation · antidetect · web scraping · Redroid · Playwright · CDP · fingerprinting research</sub>