Currently, Draco-OS is in early development. While we strive to write secure and robust code, it is primarily intended for local experimental use and is provided as-is without formal security guarantees.

We request that you do not open public issues for security vulnerabilities. Instead, please report any security issues or vulnerabilities directly by creating a private vulnerability report via GitHub.

1. Go to the Security tab of this repository.
2. Click on "Report a vulnerability".
3. Provide a clear description of the vulnerability, along with steps to reproduce it and a proposed mitigation if possible.

We will review the report and respond as quickly as possible. Since Draco-OS is designed as an offline, local-first operating system, vulnerabilities that allow for remote code execution or local privilege escalation are of paramount importance. We appreciate your efforts to keep our community safe and secure!