Security Policy

Acknowledgment: within 72 hours
Initial assessment: within 1 week
Fix or mitigation: best effort, typically within 30 days

Reporting a Vulnerability

If you discover a security vulnerability, please report it privately:

Email: security@atomicmemory.ai

Please do not open a public GitHub issue for security vulnerabilities.

This policy covers the Atomicmemory-core runtime server (src/), Docker configuration, and deployment templates.

It does not cover eval harnesses or benchmark tooling in atomicmemory-research.

Version	Supported
1.x	Yes
< 1.0	No