Please do not open public GitHub issues for security vulnerabilities.
Report privately by email:
security@foretokenai.com
Include:
- Affected component/file
- Reproduction steps
- Potential impact
- Suggested mitigation (if known)
This policy applies to the open-source InterviewOS repository.
- Never commit
.envfiles or cloud credentials. - Use
.env.examplefor configuration templates. - Rotate any credential immediately if it is accidentally exposed.