If you find a security issue related to the public install/config repo, the hosted MCP endpoint, auth flow, or API key handling, please do not open a public GitHub issue.

Report security concerns to:

• hello@regdatalab.com

Please include:

• what you found
• how to reproduce it
• affected URL, endpoint, or file
• whether any customer data or API keys may be exposed

We aim to acknowledge reports within 3 business days.

This public repo does not contain the private production backend. Security fixes for the hosted service may be applied privately first, then reflected here afterward.