# Security Policy
## Reporting a vulnerability
**Please do not open a public issue for security vulnerabilities.**
Report security issues privately through GitHub's private vulnerability
reporting: open the **Security** tab on
<https://github.com/infino-ai/infino> and choose **Report a vulnerability**.
Please include enough detail to reproduce the issue (affected version or
commit, steps, and impact). We aim to acknowledge reports within a few
business days and will keep you updated on remediation. Coordinated
disclosure is appreciated — we will credit reporters who wish to be named.
## Supported versions
infino is pre-1.0 and under active development. Security fixes are applied
to the latest release on the default branch; there are no long-term support
branches yet.