If you believe you have found a security vulnerability in the Fide Context Protocol repository, do not open a public issue.
Instead, report it privately to:
security@fide.work
Include:
- a description of the issue
- affected files, components, or generated artifacts
- reproduction steps or a proof of concept if available
- the potential impact
We will review reports as quickly as practical and coordinate on any necessary fix and disclosure process.
This repository is a specification-first repository. Security-relevant issues may include:
- vulnerabilities in published SDK artifacts
- unsafe generator behavior
- documentation or spec guidance that could cause insecure downstream implementations
General feature requests and non-security bugs should be reported through the normal issue process.