RobotFlowLabs ANIMA uses a public OSS workflow for bugs, docs, and feature requests, but security issues should be handled privately.
Do not open a public issue for:
- credential leaks
- container escape paths
- privilege escalation
- secrets in repo history
- exposed services that should not be public
Instead, review the guidance in docs/SECURITY.md and contact the RobotFlowLabs maintainers privately.
Public GitHub issues are for:
- reproducible bugs
- feature requests
- documentation improvements
- adoption and onboarding questions
If you are unsure whether a finding is security-sensitive, treat it as private.