The current supported open-source line is v0.1.x.
Please do not open public issues for suspected security vulnerabilities.
Report security concerns privately to:
info@forkit.dev
Include:
- affected version or commit
- impact summary
- reproduction steps
- any suggested mitigation
We will review the report and respond privately.
Forkit Dev Core is a local-first open-source project. Important areas include:
- deterministic identity and verification behavior
- sync receiver validation
- local service routes
- dependency and packaging safety
Avoid including secrets, tokens, or private data in public reports.