This is a single live deployment at https://agentkush.github.io/daedalus-static-poc/. Only the main branch is supported — there are no point releases or LTS branches.

If you've found a security issue (XSS, secrets exposure, supply-chain risk, etc.), please don't open a public issue. Instead:

• Open a private security advisory: https://github.com/AgentKush/daedalus-static-poc/security/advisories/new
• Or DM the maintainer on the Icarus Modding Discord

You'll usually get a response within 48 hours. If the issue is confirmed, we'll work on a fix and credit you in the patch (unless you'd prefer to stay anonymous).

In scope:

• The static site at agentkush.github.io/daedalus-static-poc/ and its source in this repo
• The hourly modinfo.json sync workflow
• Anonymous mod ratings (Firestore writes once configured)
• Giscus comment integration

Out of scope:

• Mods linked from the listing — please report issues with a specific mod to that mod's author directly.
• Cloudflare / GitHub Pages infrastructure itself — report to the respective platform.
• Vulnerabilities only exploitable with admin access to the deploying GitHub account (nothing to do here).