If you discover a security vulnerability, please report it privately:

Email: aidevops@marcusquinn.com

Please include:

• Description of the vulnerability
• Steps to reproduce
• Potential impact
• Any suggested fixes (optional)

Response timeline:

• Acknowledgment within 48 hours
• Initial assessment within 7 days
• Fix timeline communicated based on severity

Please do not:

• Open public issues for security vulnerabilities
• Exploit vulnerabilities beyond proof-of-concept

We appreciate responsible disclosure and will credit reporters in release notes (unless you prefer to remain anonymous).