This project is pre-1.0 and maintained on main.

Please do not open public issues for security vulnerabilities.

• Email: security@cliparr.dev (replace with your preferred channel before launch)
• Include steps to reproduce and impact details
• We will acknowledge within 72 hours and provide a remediation timeline

• Least privilege for services and tokens
• Encrypted transport for all remote access
• Credential redaction in logs
• Dependency updates via automated PRs