The ElGap team takes security seriously. We appreciate your efforts to responsibly disclose your findings, and we will make every effort to acknowledge your contributions.

Please do not report security vulnerabilities through public GitHub issues.

Instead, please report them directly to our private, security-focused email address: security@elgap.rs

Please include the following details in your report:

• A clear description of the vulnerability.
• Steps to reproduce the vulnerability.
• Any proof-of-concept code.

We will make our best effort to respond to your report within 48 hours and to keep you updated on our progress. We thank you for helping to keep ElGap and its users safe.