Skip to content

Security: brivvyHQ/ai

SECURITY.md

Security policy

Scope

This repository holds public metadata and documentation for Brivvy AI integrations. It does not include the private MCP implementation source code.

Report a vulnerability

Email security@brivvy.io.

Include:

  • Which surface is affected (for example mcp/server.json, install flow, OAuth flow).
  • Steps to reproduce.
  • Impact.
  • Suggested remediation, if you have one.

Response targets

  • First reply within three business days.
  • Triage and severity within seven business days.

Disclosure

Do not post public details until we finish coordinated remediation.

There aren't any published security advisories