If you discover a security vulnerability in RedCalibur, please report it responsibly:

1. Do NOT create a public GitHub issue
2. Email: security@redcalibur.dev (or create a private issue)
3. Include detailed information about the vulnerability
4. Allow time for the issue to be addressed before public disclosure

RedCalibur is designed with security in mind:

• Rate Limiting: Built-in delays prevent aggressive scanning
• API Key Protection: Environment variables for sensitive data
• Logging: Comprehensive audit trails
• Input Validation: Sanitized inputs to prevent injection attacks

• Only use against systems you own or have explicit permission to test
• Follow all applicable laws and regulations
• Respect rate limits and target system resources
• Use for educational and authorized testing purposes only

Security updates will be released as soon as possible after a vulnerability is confirmed and fixed.