| Version | Supported |
|---|---|
| 0.1.x | Yes |
Do not open a public GitHub issue for security vulnerabilities.
Send a private report to: phmotad@gmail.com
Include:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix if you have one
You will receive an acknowledgment within 48 hours and a status update within 7 days.
In scope:
fmemandfqueryCLI binaries- FireMemory core engine
- FireQuery pipeline and MCP server
.fbrainfile format parsing
Out of scope:
- Third-party ML models (report to their respective maintainers)
- OS-level issues
We follow coordinated disclosure. We will work with you to understand and fix the issue before any public announcement.