Security

SECURITY.md

Security Policy

Reporting a vulnerability

Please report security issues privately by opening a security advisory in the repository:

https://github.com/OliverHennhoefer/talk-tag/security/advisories/new

Do not open public issues for undisclosed vulnerabilities.

What to include

Affected versions and environment details
Clear reproduction steps or proof of concept
Potential impact
Suggested mitigations if known

Response expectations

Initial acknowledgement target: within 5 business days
Triage and remediation timeline depends on severity and reproducibility

There aren’t any published security advisories