If you believe you have found a security vulnerability in Advent of Code, we appreciate your help in disclosing it to us in a responsible manner.

To report a security vulnerability, please email us at amedee-github@amedee.be with the subject "Security Vulnerability in Advent of Code". Please include the following details in your email:

• A brief description of the vulnerability.
• Steps to reproduce the vulnerability.
• Any proof-of-concept or exploit code.

Our team will acknowledge your email within 20 business days and will work with you to address the issue promptly. We kindly request that you do not publicly disclose the issue until we have had a chance to address it.

This security policy applies to the Advent of Code repository. Please note that we are not able to offer bug bounties at this time.

We kindly ask that you adhere to the following responsible disclosure guidelines:

• Provide full details of the vulnerability, including steps to reproduce.
• Allow us a reasonable amount of time to address the issue before disclosing it publicly.
• Make a good faith effort to avoid privacy violations, destruction of data, and interruption or degradation of our services during your research.

The following issues are considered out of scope:

• Denial of service attacks.
• Social engineering attacks.
• Physical attacks against our infrastructure.
• Issues found in third-party dependencies. Please report these to the maintainers of the respective projects.

We appreciate the security community's efforts in responsibly disclosing security vulnerabilities. If you report a vulnerability that leads to a fix, we will acknowledge your contribution in the release notes, unless you request otherwise.

Thank you for helping us keep Advent of Code safe and secure!