This repository is a reference control plane for shipment-exception triage, carrier-rule mapping, and resolution posture across logistics workflows. It ships synthetic, non-sensitive sample data only. It is not a production system of record and should not be deployed with real shipment, customer, or carrier data without an independent security review.

Please report suspected vulnerabilities privately to security@kineticgain.com (or open a GitHub security advisory). Do not open a public issue for a security report.

We aim to acknowledge within 3 business days.

• Dependencies are monitored weekly via Dependabot (npm + GitHub Actions).
• CI runs npm audit --audit-level=high on every push and pull request.
• High/critical advisories are triaged and either patched or documented here.

None at v1.0-prod.