Security fixes are applied to the default branch and the latest release.

Please report security issues privately using GitHub Security Advisories: https://github.com/workorder-systems/db/security/advisories/new

Do not open public issues or pull requests for security vulnerabilities. If you are unsure whether something is security-related, open a normal issue.

We aim to acknowledge reports within 5 business days and provide a remediation plan as quickly as possible. Timelines may vary depending on severity and complexity.