Relic is an alpha research project. Please do not report security issues in public issues.

Report suspected vulnerabilities privately to the maintainers through the repository security advisory flow when available. Include a minimal reproduction, affected commit or release, and whether private subject data, delivery credentials, or Hermes profile isolation may be affected.

Do not include real subject data, API keys, bot tokens, chat exports, or local Hermes profile contents in reports. Use synthetic fixtures whenever possible.