If you discover a security vulnerability in this repository, please report it privately via GitHub's private vulnerability reporting tool or by emailing [email protected].
Do not disclose vulnerabilities publicly until they have been reviewed and addressed.

• We aim to respond to vulnerability reports within 72 hours.
• Once validated, we will coordinate remediation and disclosure with you.

If you are running an older version, please upgrade to the latest release for security patches.

• Do not share secrets, credentials, or sensitive data in issues, pull requests, or commit messages.
• Use multi-factor authentication (MFA) for all accounts with access to this repository.
• Regularly update dependencies and monitor for vulnerabilities.

Thank you for helping keep AirQo-api and its users safe!