If you discover a security vulnerability in ScoutSSD, please report it responsibly:

• Do not open a public GitHub issue
• Do email the maintainer directly or use GitHub's private vulnerability reporting feature

We will acknowledge your report within 48 hours and provide a fix timeline.

If you find that real API keys, passwords, or personal data have been committed to the repository:

1. Do not publicly disclose the leaked secret
2. Report it privately so the secret can be rotated and the commit removed
3. The secret owner should immediately rotate the compromised credential

This repository uses gitleaks as a pre-commit hook to prevent accidental secret commits. If the hook blocks your commit, check for accidentally included credentials.