DriveMind is still early-stage software. If you find a security issue, please report it responsibly.
Please report issues involving:
- install or bootstrap scripts
- unsafe file handling or path handling
- privilege escalation risks
- script download or execution risks
- behavior that could silently cross a stated safety boundary.
If GitHub private vulnerability reporting or Security Advisories are available for this repository, use that channel first. If no private channel is available, open a minimal public issue without exploit details and ask the maintainer for a secure follow-up path.
- affected file or script
- impact summary
- reproduction steps
- suggested mitigation, if known.
Please avoid publishing active exploit details before the maintainer has had a reasonable chance to understand and address the issue.
The project should aim to acknowledge reports within 5 business days, but response time may vary because this is an early-stage repository.