runseal is in early beta. Security fixes are handled on a best-effort basis for
the latest beta release on the main branch.
Please do not open a public issue for suspected vulnerabilities.
Instead, report them privately by emailing security@runseal.ai with:
- a short description of the issue
- affected version, commit, or branch
- reproduction steps or a proof of concept
- any suggested mitigations or impact details
You can expect an initial response within 5 business days. We will work with you to validate the report, assess impact, and coordinate a fix and disclosure.
If you are unsure whether something is security-sensitive, please report it privately first.