# Security Policy
## Supported Versions
Security reports should target the latest published `pointbreak` crate and the current `main`
branch. The project is pre-1.0, so fixes may require upgrading to a newer patch release once one is
available.
## Reporting A Vulnerability
Please do not file security-sensitive reports as public GitHub issues.
Send a private report to Kevin Swiber at `kevin@swiber.dev` with:
- affected Pointbreak version or commit
- operating system and Rust version if relevant
- reproduction steps or a proof of concept
- expected impact
- whether the issue affects local files, command output, terminal rendering, Git data, or release
automation
You should receive an acknowledgement within a few business days. Public disclosure timing will be
coordinated after the issue is understood and a fix path is available.