Do not report security vulnerabilities through public GitHub issues.
Instead, please report them by email to: security@cidadao.ai
Please include the following information:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix (if any)
| Version | Supported |
|---|---|
| 1.0.x | β |
- Multi-layer authentication (JWT + API keys)
- Rate limiting and DDoS protection
- Input validation and sanitization
- Comprehensive audit logging
- HashiCorp Vault integration
- Real-time threat detection
- Security Team: security@cidadao.ai
- Response Time: Within 48 hours
- Coordinated Disclosure: We practice responsible disclosure
For more details, see our full SECURITY.md file.