Security
Report vulnerabilities privately.
Please do not open public GitHub issues for security vulnerabilities. Use GitHub private vulnerability reporting on the affected Mosvera repository when available, or contact nic@niclydon.io.
Include the affected package or repository, version or commit SHA, reproduction steps, impact, and any disclosure timeline.
Mosvera is pre-1.0. Supported versions are the latest published 0.x packages and the default branch of each public repository.
Machine-readable policy: /.well-known/security.txt.