We take the security of HPC-AI-Optimization-Lab seriously. If you believe you have found a security vulnerability, please report it to us as soon as possible.

1. Do NOT open a public GitHub issue for security vulnerabilities
2. Email your findings to the project maintainers
3. Include:
   • Description of the vulnerability
   • Steps to reproduce the issue
   • Potential impact assessment
   • Suggested fix (if any)

• Initial Response: Within 48 hours
• Status Update: Within 7 days
• Fix Timeline: Based on severity
  • Critical: Within 7 days
  • High: Within 30 days
  • Medium/Low: Within 90 days

When using this project:

1. Always review code changes before merging
2. Keep dependencies up to date
3. Follow the principle of least privilege when configuring access
4. Regularly audit CI/CD workflows and permissions

Security updates will be released as patch versions and announced in the CHANGELOG.md.

We appreciate responsible disclosure of security issues and will acknowledge reporters (with permission) in our release notes.