# Security Policy

## Supported Versions

Security fixes are applied to the latest published version of `@openglobus/og`.
Please reproduce issues on the latest release before reporting.

## Reporting a Vulnerability

Please do not report security vulnerabilities through public GitHub issues.

Report security issues by email:

- `mgevlich@gmail.com`

Include as much detail as possible:

- Affected version and environment
- Steps to reproduce
- Proof of concept (if available)
- Potential impact

You will receive an acknowledgment as soon as possible. We will investigate,
confirm severity, and coordinate a fix and disclosure timeline.

## Disclosure Process

- Valid reports are triaged privately.
- A fix is prepared and tested.
- A coordinated public disclosure is made after a fix is available.