Skip to content

Security: tomcustos/tcaml-framework

Security

SECURITY.md

Security Policy

Supported material

This repository contains public AML skills, templates, schemas, examples and framework documentation. It does not contain live client data, credentials, API keys, paid database access, private implementation profiles or live evidence packs.

Reporting a vulnerability

Use GitHub private vulnerability reporting if available. Do not publish sensitive security or privacy issues in public issues, pull requests or discussions.

Do not disclose publicly

Do not publish:

  • source credentials, API keys, cookies or session data;
  • private implementation profiles;
  • personal data or customer data;
  • live case files or evidence packs;
  • MLRO / compliance officer contacts;
  • internal thresholds or confidential escalation logic;
  • suspicious activity details that could create tipping-off risk.

There aren't any published security advisories