If you discover a security vulnerability, please report it responsibly. Do not open a public issue.

Send an email to: yo+github@tomohisaoda.com

Please include:

• Description of the vulnerability
• Steps to reproduce
• Potential impact
• Suggested fix (if any)

You can expect an initial response within 7 days. We will work with you to understand and address the issue before any public disclosure.

This policy applies to the Reports CLI, core library, and macOS application in this repository.