This project is currently maintained on the main branch.

Please report security vulnerabilities privately.

• Email: security@example.com
• Subject format: [SECURITY] 01cloud DNS Controller - <short summary>

Please include:

1. Description of the vulnerability
2. Steps to reproduce (PoC if available)
3. Impact assessment
4. Suggested remediation (if known)
5. Your contact details

1. We acknowledge receipt within 3 business days.
2. We triage and validate the report.
3. We provide regular status updates while investigating.
4. We prepare a fix and coordinate disclosure timing with the reporter.
5. We publish a security advisory after remediation.

In scope:

• Source code in this repository
• Build and CI configuration in this repository

Out of scope:

• Third-party service outages
• Vulnerabilities requiring physical access to infrastructure not managed by this project

We support good-faith security research. If you act in good faith, avoid privacy violations, avoid service disruption, and provide us a reasonable time to remediate, we will not pursue legal action for your research.