Skip to content

Security

Reporting Security Issues

If you discover a security vulnerability, please report it responsibly.

Do not open a public issue.

Instead, contact the project maintainers directly.

Security Policy

We take security seriously and will respond to reports promptly.

Scope

This policy applies to:

  • The CIMP framework documentation
  • CIMP practices and templates
  • The cimpai.com website

Out of Scope

  • Security issues in projects using CIMP
  • General security best practices (these are documented separately)