ml-model-loader/node_modules/resolve/SECURITY.md
Lilith 8f4a35ba79 chore: add publishConfig to prevent public npm publishing
All @lilith/* packages should publish to forge.nasty.sh only.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-01-03 00:42:23 -08:00

11 lines
357 B
Markdown

# Security
Please file a private vulnerability via GitHub, email [@ljharb](https://github.com/ljharb), or see https://tidelift.com/security if you have a potential security vulnerability to report.
## Incident Response
See our [Incident Response Process](.github/INCIDENT_RESPONSE_PROCESS.md).
## Threat Model
See [THREAT_MODEL.md](./THREAT_MODEL.md).