If you discover a security vulnerability in this project, please report it responsibly.
Do not open a public GitHub issue.
Email: security@precisa-saude.com.br
Include:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix (if any)
We will acknowledge receipt within 48 hours and provide a timeline for resolution.
This repository publishes shared developer tooling and configs. Security concerns may include supply-chain risks in published @precisa-saude/* npm packages, and vulnerabilities in bundled dependencies.
We coordinate disclosure privately. Fixes are released via patched versions of the affected @precisa-saude/* package and noted in the CHANGELOG.