GTKX is currently in pre-release (0.x) and not yet recommended for production use. Security updates are applied to the latest minor version only.

If you discover a security vulnerability in GTKX, please report it responsibly:

1. Do not open a public GitHub issue for security vulnerabilities
2. Email the maintainer directly at eugeniodepalo@gmail.com
3. Include a detailed description of the vulnerability and steps to reproduce

• Initial Response: Within 48 hours acknowledging receipt
• Status Updates: Every 5-7 days until the issue is resolved
• Resolution: Security patches will be prioritized and released as soon as possible

We follow coordinated disclosure. Once a fix is available, we will:

1. Release the patched version
2. Publish a security advisory on GitHub
3. Credit the reporter (unless they prefer to remain anonymous)

Thank you for helping keep GTKX secure.