Skip to content

Security: avadavisstudio/tracerank-prototype

Security

.github/SECURITY.md

Security Policy

This repository is a public static proof-of-method surface for TraceRank.

It contains public-safe demo content and synthetic specimen data only.

Scope

This repository contains:

  • static HTML/CSS/JS
  • markdown documentation
  • synthetic specimen data
  • public-safe assets

This repository does not contain:

  • customer data
  • production credentials
  • payment processing
  • private infrastructure
  • backend services
  • authentication systems

Reporting a vulnerability

Do not open a public GitHub issue for a suspected security problem.

Email: Ava@avadavisstudio.com
Subject: TraceRank Prototype Security Report

Include:

  • affected URL or file
  • reproduction steps
  • observed impact
  • screenshots or proof-of-concept if safe to share

Disclosure expectations

Please allow reasonable time for review and remediation before public disclosure.

Out of scope

The following are out of scope for this repository:

  • issues that exist only in third-party platforms such as GitHub or Stripe
  • social engineering, phishing, spam, or physical attacks
  • destructive testing
  • vulnerabilities requiring access to non-public systems

There aren't any published security advisories