1  # Security Policy
 2  
 3  ## Supported Versions
 4  
 5  | Version | Supported          |
 6  |---------|--------------------|
 7  | 0.1.x   | Yes                |
 8  
 9  ## Reporting a Vulnerability
10  
11  If you discover a security vulnerability in argus-ai, please report it responsibly.
12  
13  **Do not open a public issue.**
14  
15  Email: security@ambharii.com
16  
17  Include:
18  - Description of the vulnerability
19  - Steps to reproduce
20  - Impact assessment
21  - Suggested fix (if any)
22  
23  We will acknowledge receipt within 48 hours and provide a timeline for resolution.
24  
25  ## Scope
26  
27  argus-ai is a scoring and monitoring library. It does not:
28  - Store or transmit LLM prompts/responses externally
29  - Make network calls (unless exporter backends are configured)
30  - Access filesystem beyond Python imports
31  - Execute arbitrary code from user input
32  
33  The safety scorer performs pattern-matching only and does not replace dedicated security tooling.