The latest released version receives security fixes.

Please do not open a public issue for security vulnerabilities.

Instead, report them privately by emailing 1dg618@gmail.com, or by using GitHub's private vulnerability reporting.

Include a description of the issue, steps to reproduce, and the affected version. You can expect an acknowledgement within a few days.

fakellm-recorder records real API traffic. Recorded sessions and generated config files may contain sensitive prompt data. Credentials are stripped at capture and PII scrubbing is on by default, but always review generated files before committing them.