This project is defensive and offline-first.
- Audits code you own or have permission to test.
- Focuses on static analysis and secure remediation guidance.
- Exploit payloads, weaponized instructions, or guidance to compromise systems.
- Scanning third-party services without authorization.
If you find a bug in Citadel Local, open a GitHub issue with:
- steps to reproduce
- environment details
- logs (redact secrets)