This project, optics-framework by Mozark.ai, adheres to the Eclipse Foundation Vulnerability Reporting Policy.

If you believe you have discovered a security vulnerability in this project, we strongly encourage you to report it responsibly through coordinated disclosure.

🚫 Please do not report vulnerabilities via GitHub Issues, Discussions, or Pull Requests.

Instead, use one of the following private channels:

• Email: lalit@mozark.ai
• Report a vulnerability via GitHub Security Advisories (if available)

More details on coordinated disclosure can be found at the Eclipse Foundation Security page.

• The type of issue (e.g., code injection, arbitrary code execution, insecure deserialization, unsafe use of eval, path traversal, or permission escalation)
• Affected version(s)
• Potential impact and severity
• Step-by-step instructions to reproduce the vulnerability
• Relevant source file paths or URLs (tag/branch/commit)
• Any configuration or setup required
• Logs or screenshots (if helpful)
• Proof-of-concept or exploit code (if available)

Providing detailed information will help us investigate and address the issue more efficiently.

Currently, we are in early development and do not have version-specific support in place. All contributions are evaluated case-by-case.