If you discover a security vulnerability in @model-action-protocol/core, please report it responsibly.
Do not open a public issue. Instead, email: deadpxlstudio@gmail.com
Include:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix (if any)
We will acknowledge receipt within 48 hours and provide an estimated timeline for a fix.
This policy covers the @model-action-protocol/core library. The cryptographic ledger chain integrity, state snapshot handling, and authorization grant validation are particularly security-sensitive areas.
| Version | Supported |
|---|---|
| 0.1.x | Yes |