Security Policy

Supported Versions

Version	Supported
latest (main)	✅
< 1.0	❌

Reporting a Vulnerability

Do not report security vulnerabilities through public GitHub issues.

shadowmap is a security tool — responsible disclosure matters here.

How to report

1. GitHub Security Advisories (preferred): Report privately via this repo.
2. LinkedIn: Message @srinikhilchakilam directly.

Response timeline

Action	Timeline
Acknowledgement	Within 48 hours
Initial assessment	Within 5 business days
Fix / mitigation	≤ 30 days (critical), ≤ 90 days (others)

Researchers will be credited in release notes unless anonymity is requested.