Please follow our security reporting guidelines at: https://github.com/codeGROOVE-dev/vulnerability-reports/blob/main/SECURITY.md

This document contains all the specifics for how to submit a security report, including contact information, expected response times, and disclosure policies.

• GitHub tokens are never logged or stored
• All inputs are validated
• File permissions are restricted (0600/0700)
• Only HTTPS URLs to github.com are allowed
• No shell interpolation of user data