aws-observability-alerting is an alert routing tool developed by Merkaba AI Risk Management.

If you discover a security vulnerability — including ways to spoof alerts, extract webhook URLs, or bypass SNS topic policies — please report it to:

Email: security@merkabacreatives.org Subject line: [SECURITY] aws-observability-alerting — <brief description>

We will acknowledge receipt within 48 hours.

• Webhook URLs must be managed securely (e.g., via Secrets Manager or encrypted environment variables).
• Lambda execution roles are scoped to only allow CloudWatch log writing and basic execution.