If you discover a security vulnerability in site-audit, please report it responsibly.

Do NOT open a public GitHub issue for security vulnerabilities.

Instead, email eli@ventechdigital.com with:

• Description of the vulnerability
• Steps to reproduce
• Potential impact
• Suggested fix (if any)

You will receive a response within 48 hours. We will work with you to understand and address the issue before any public disclosure.

This policy applies to the site-audit CLI tool and its dependencies. Issues in third-party dependencies should be reported to their respective maintainers, but feel free to let us know so we can update.