If you discover a security vulnerability in Senior, please report it privately by email:

• zhihui.me@gmail.com

Please include:

• A clear description of the issue
• Affected versions and environment details
• Reproduction steps or a proof of concept
• Potential impact assessment

Do not disclose the issue publicly until a fix is available.

• Initial acknowledgment target: within 5 business days
• We will validate, triage, and provide update timelines for confirmed issues

This policy applies to the source code and official releases of Senior.