| Version | Supported |
|---|---|
| Latest | Yes |
| < Latest | No |
We take security seriously. If you discover a vulnerability, please report it responsibly.
DO NOT open a public issue for security vulnerabilities.
- Email: security@ailydian.com
- Include:
- Description of the vulnerability
- Steps to reproduce
- Potential impact assessment
- Suggested fix (if any)
| Stage | Timeline |
|---|---|
| Acknowledgment | 24 hours |
| Initial Assessment | 48 hours |
| Status Update | 7 days |
| Resolution Target | 30 days |
We support responsible disclosure. Security researchers acting in good faith will not face legal action, provided they:
- Do not access, modify, or delete user data
- Do not disrupt services
- Report findings exclusively to our security team
- Allow reasonable time for remediation before disclosure
- All data encrypted at rest (AES-256-GCM) and in transit (TLS 1.3)
- Regular dependency audits via Dependabot
- Automated SAST scanning via CodeQL
- Strict access controls and least-privilege principles
- Comprehensive audit logging
| Channel | Address |
|---|---|
| Security Reports | security@ailydian.com |
| General Inquiries | info@ailydian.com |
| Business | ailydian@ailydian.com |
Copyright (c) 2025-2026 AiLydian. All Rights Reserved.