If you discover a security vulnerability in the SIMBA MCP Server, please report it responsibly:

1. Do not open a public GitHub issue.
2. Email info@1749.io with a description of the vulnerability, steps to reproduce, and any potential impact.
3. We will acknowledge your report within 3 business days and provide a timeline for a fix.

For the broader SIMBA platform security policy, see getsimba-ai/simba-mmm SECURITY.md.