Security Policy

Supported Versions

Version	Supported
2.4.x	✅
< 2.4	❌

Aegis Memory is security-critical infrastructure — context is the attack surface, so we take reports seriously.

Please do not open public issues for security vulnerabilities.

Report privately via either:

GitHub's private vulnerability reporting: the Security tab → Report a vulnerability
Email: arulnidhi@quantifylabs.ai

Include: affected version, reproduction steps, and impact assessment.

For deeper security architecture (4-stage content pipeline, HMAC-SHA256 integrity, OWASP 4-tier trust hierarchy), see docs/guides/security.mdx.