This repository is a reference control plane for booking-disruption triage, recovery-risk mapping, and guest-communication posture across travel/hospitality operations. It ships synthetic, non-sensitive sample data only. It is not a production system of record and should not be deployed with real booking, guest, or customer data without an independent security review.

Please report suspected vulnerabilities privately to security@kineticgain.com (or open a GitHub security advisory). Do not open a public issue for a security report.

We aim to acknowledge within 3 business days.

• Dependencies are monitored weekly via Dependabot (npm + GitHub Actions).
• CI runs npm audit --audit-level=high on every push and pull request.
• High/critical advisories are triaged and either patched or documented here.

None at v1.0-prod.