If you discover a security vulnerability in the AIAP protocol specification or reference implementations, please report it responsibly through GitHub's private security advisory channel:

Report a vulnerability on GitHub

This keeps the report private until a fix is released and coordinated disclosure is complete.

Please include:

• Description of the vulnerability
• Steps to reproduce (if applicable)
• Potential impact assessment
• Suggested fix (if any)

• Acknowledgment: Within 48 hours
• Initial Assessment: Within 7 days
• Resolution Plan: Within 14 days

This security policy covers:

• The AIAP protocol specification (specification/AIAP_Protocol.md)
• The AIAP quality standards (specification/standards/)
• The AIAP proto definition (specification/aiap.proto)
• Official documentation and examples

We follow a coordinated disclosure process. Please do not publicly disclose vulnerabilities until a fix has been released and announced.

Align Axiom 0: Human Sovereignty and Wellbeing. Version: AIAP V1.0.0. www.aiap.dev