Please do not open a public GitHub issue for security vulnerabilities.

Report via one of the following:

• Email: security@gravitee.io
• GitHub: Private vulnerability report

Include in your report:

• Description of the vulnerability
• Steps to reproduce
• Potential impact
• Suggested fix if available

You can expect an acknowledgement within 48 hours and a resolution timeline within 7 days for critical issues.