If you believe you have found a security vulnerability, we encourage you to let us know right away. We will investigate all legitimate reports and do our best to quickly fix the problem.

Please do not report security vulnerabilities through public GitHub issues.

Instead, report them via email to tempo@guidotto.dev.

Please include:

• A description of the vulnerability
• Steps to reproduce the issue
• Any relevant logs or screenshots
• The potential impact of the vulnerability

• Acknowledgment: within 48 hours
• Initial assessment: within 1 week
• Resolution target: depends on severity, typically within 30 days