# Security Policy
## Reporting a Vulnerability
If you discover a security issue in RepoPilot, please do not open a public issue.
Please report it privately through GitHub Security Advisories.
Include:
- affected version;
- steps to reproduce;
- expected impact;
- suggested fix if known.