Security updates are applied to the default branch (main or equivalent) as applicable. There is no separate LTS line for this project today.

Please do not open a public GitHub issue for undisclosed security problems.

Instead, use one of the following:

• GitHub Security Advisories: open a private vulnerability report for this repository (preferred if the feature is enabled).
• Email: contact the maintainers with subject line HypnoLoop security if you cannot use GitHub private reporting.

Include enough detail to reproduce or understand the impact (affected component, build or runtime scenario, and any proof-of-concept you are comfortable sharing).

HypnoLoop depends on JUCE (Git submodule). Example assets shipped with upstream JUCE (for example under JUCE/examples/) are third-party demo material and may contain sample configuration or identifiers. Treat them as upstream content, not as credentials for this project. See NOTICE.

We aim to acknowledge reports within a few business days and coordinate a fix and release timeline where appropriate. Please allow maintainers reasonable time to patch before public disclosure.