# Security Policy
## Supported versions
Segovia is pre-release (`0.0.x`). No versions are supported for production use yet; security fixes,
when relevant, land on `main`.
## Reporting a vulnerability
Please report suspected vulnerabilities privately by email to **fcarvajalbrown@gmail.com** rather than
opening a public issue. Include a description, reproduction steps, and the affected version or commit.
You can expect an acknowledgement within a reasonable time, and coordination on a fix and disclosure
before any public report.