Security fixes are provided for the latest commit on main. Older snapshots are not guaranteed to receive patches.

Do not open public issues for potential vulnerabilities.

Send reports to info@rayls.com with:

• A clear description of the issue
• Reproduction steps or proof of concept
• Impact assessment
• Suggested mitigation (if available)

We aim to:

• Acknowledge receipt within 3 business days
• Provide an initial triage within 7 business days
• Share remediation status updates until resolution

Please allow us time to investigate and patch before public disclosure. Once fixed, we will coordinate an advisory and release notes.