diff-contract is designed to run locally against git metadata.

• It does not call external services.
• It does not call an LLM.
• It does not mutate git state.
• It does not print file contents by default.
• It does not intentionally read secrets.

Before this repository is public, report issues directly to the maintainer.

After public launch, add the preferred security contact here.