If you discover a security vulnerability in xpctl, please report it responsibly.

Do not open a public GitHub issue for security vulnerabilities.

Instead, please email: nficano@gmail.com

Include:

• A description of the vulnerability.
• Steps to reproduce (if applicable).
• Any relevant logs or screenshots.

You should receive a response within 72 hours acknowledging your report. We will work with you to understand the issue and coordinate a fix before any public disclosure.