This repository is a public-facing curated mirror of the Unified Framework.
Security reports should target the current default branch:
| Surface | Supported |
|---|---|
main |
Yes |
Please do not open a public issue for an unpatched security concern.
Instead, use one of these private paths:
- GitHub private vulnerability reporting for this repository, if available.
- Private contact to the repository owner through GitHub.
Please include:
- the affected file or workflow
- the impact you are concerned about
- clear reproduction steps or a proof of concept when possible
- any suggested mitigation
- This policy covers the public repository surface only.
- Semantic source-of-truth, authority-split, or mirror-sync questions are not security issues by default; use the regular issue templates for those topics.
- This file does not change the repository authority model. Root
AGENTS.mdremains the only repo-governance authority in this repository.