The public repository tracks the latest source version. Please open an issue or pull request for non-sensitive defects.
Please do not publish secrets, exploit details, or private infrastructure information in a public issue. Report sensitive findings privately to the repository owner, then include:
- affected commit or release package
- impacted component
- reproduction steps
- expected impact
- suggested mitigation, if known
Never commit real .env files, API keys, local run databases, generated .runs/ directories, or cloud deployment credentials. Use apps/api/.env.example as the template for local configuration.