Only the latest main branch and tagged releases are actively supported and reviewed for security issues.
Older versions are provided as-is without any security guarantee.

If you discover a security vulnerability, please report it privately and responsibly.

Contact options:

• 📧 enterprise@PAXECT-Team@outlook.com (preferred for enterprise or compliance disclosures)
• 📧 PAXECT-Team@outlook.com (general coordination)
• 🔒 GitHub: use Security → Advisories → Report a vulnerability

Do not create public Issues or Pull Requests for unresolved vulnerabilities.

1. The report will be acknowledged within 72 hours.
2. A maintainer will contact you for additional details or proof of concept (if needed).
3. A fix or mitigation will be developed privately.
4. Once resolved, a coordinated public advisory and changelog entry will be published.
5. Researchers may be credited for responsible disclosure, if they wish.

To ensure safe and lawful testing:

• Do not test on production or live environments.
• Avoid social engineering, spam, or denial-of-service attacks.
• Keep findings confidential until an official patch or advisory is released.
• Follow good-faith principles of coordinated disclosure.

• LICENSE — Apache-2.0 License
• DISCLAIMER — Legal terms and liability
• CODE_OF_CONDUCT — Contributor standards
• TRADEMARKS — Brand and naming policy

© 2025 PAXECT Systems. All rights reserved.
For all responsible disclosure inquiries: 📧 PAXECT-Team@outlook.com