Do not open a public GitHub issue for security vulnerabilities.

Please report security issues by emailing security@attevon.com with:

1. A description of the vulnerability and its potential impact
2. Steps to reproduce or a proof-of-concept
3. Any suggested mitigations (if known)

We will acknowledge receipt within 48 hours and aim to provide a resolution timeline within 7 days.

Once a fix is released we will credit you in the release notes (unless you prefer to remain anonymous).

This policy covers the OpenSpeakers application code in this repository. It does not cover third-party model weights, upstream libraries, or infrastructure you deploy on your own hardware.

Copyright © 2026 Attevon LLC. All rights reserved. Licensed under the GNU Affero General Public License v3.0 — see LICENSE.