If you discover a security vulnerability in GEAK, please report it through GitHub's Private Vulnerability Reporting feature:

1. Go to the Security tab of this repository.
2. Click "Report a vulnerability".
3. Fill in the details and submit.

Please do NOT open a public issue for security vulnerabilities.

When reporting a vulnerability, please include:

• A description of the vulnerability and its potential impact.
• Steps to reproduce the issue.
• Any relevant logs, screenshots, or proof-of-concept code.

• We will acknowledge receipt of your report within 5 business days.
• We will provide an initial assessment within 10 business days.
• We will work with you to understand and address the issue before any public disclosure.

This policy applies to the GEAK repository and its official releases. Third-party dependencies are outside the scope of this policy; please report those to the respective maintainers.