Since we are in the early stages of development, we currently support the latest version only.

Please do not report security vulnerabilities through public GitHub issues.

If you have discovered a security vulnerability in Veil (e.g., a bypass in the masking logic, a way to recover PII from tokens, or a leakage in the logging wrapper), we appreciate your help in disclosing it to us responsibly.

Please send an email to security@veil.services.

In your email, please include:

1. Type of issue (e.g., leakage, injection, bypass).
2. Full description of the vulnerability.
3. Proof of Concept (code snippet or reproduction steps) showing how to exploit the issue.

1. We will acknowledge your email within 48 hours.
2. We will investigate the issue and determine its severity.
3. If confirmed, we will release a patch as soon as possible.
4. We will publicly acknowledge your contribution in our release notes (unless you prefer to remain anonymous).

Thank you for helping keep the AI ecosystem safe.