RiskLab UI currently supports the latest 1.x line.

If you find a security issue, do not open a public issue.

Report privately through GitHub Security Advisories for this repository.

Include:

• affected package and version
• impact summary
• reproduction details
• suggested mitigation if available

• Initial triage: within 3 business days
• Status update cadence: at least weekly until resolution
• Patch release target: based on severity and exploitability

Security issues include:

• prototype pollution
• code injection
• unsafe serialization or parsing paths
• privilege or data boundary bypass
• dependency-level vulnerabilities in shipped artifacts