Do not open a public issue for security vulnerabilities.
Use GitHub's private vulnerability reporting:
- Go to the Security tab
- Click Report a vulnerability
- Fill in the details
We respond within 7 business days.
- FastAPI endpoints
- Authentication and authorization
- EU AI Act compliance data handling
- OPC UA/MQTT ingestion
- Third-party dependencies (report upstream)
- Demo mode (intentionally open)