Skip to content

Security: CodeSigils/skill-discovery

Security

SECURITY.md

Security Policy

Supported Versions

This repo is a single-SKILL.md methodology. There are no versioned releases — always use the latest commit from main.

Reporting a Vulnerability

This project contains no runtime dependencies, no secrets, and no network-facing service. It ships a single methodology SKILL.md with supporting CI tooling (3 Python scripts under .github/scripts/). If you find an issue with the content or CI configuration, please open a public issue on GitHub.

Do not open a public issue if the vulnerability involves the GitHub Actions workflow (e.g., leaked secrets in CI logs). Report privately to the repository owner via GitHub's security advisory tool.

Commit Signing

Maintainer commits from 2026-07-05 onward are SSH-signed. Earlier commits may be unsigned and are retained to avoid rewriting public history.

There aren't any published security advisories