Supported Versions

We actively maintain and monitor the main branch of our repository. Security fixes are applied as quickly as possible. Please assume the latest commit on main is the actively maintained code.

Reporting a Vulnerability

We take security seriously. If you discover a security vulnerability, please report it responsibly.

Preferred Contact Methods

• Email: mandar@example.com (PGP optional)
• GitHub Security Advisories: Open a private advisory in the repository

What to Include in Your Report

• A clear summary of the vulnerability
• Steps to reproduce (ideally a minimal test case)
• Impact assessment (data exposure, RCE, auth bypass, etc.)
• Any suggested remediation or mitigation
• Your contact information for follow-up

Response Process

Our security response timeline:

For confirmed vulnerabilities, we aim to publish a fix and coordinated disclosure within 90 days, depending on severity and patch availability.

Technology Stack

Our application uses the following components. When reporting, please include relevant versions:

Security Measures

We implement the following security measures:

• HTTPS: All communications are encrypted using TLS
• Input Validation: All user inputs are sanitized and validated
• CORS: Cross-Origin Resource Sharing properly configured
• Dependencies: Regular updates to patch known vulnerabilities
• Code Review: All changes undergo security review
• No Sensitive Storage: Prediction inputs are not stored permanently

Responsible Disclosure

We follow responsible disclosure practices. If you are a security researcher and would like to coordinate disclosure, please email us. We will work with you to establish a disclosure timeline that protects our users while recognizing your contribution.

Security Contact