We actively provide security updates and nightly audits for the following versions:

BiotechProject is built on a Privacy-by-Architecture model. To ensure clinical-grade resilience, we implement:

• Zero-Server Processing: All biological data is processed 100% client-side. No sensitive data is transmitted or stored externally.
• Automated Nightly Scanning: Powered by GitHub CodeQL and automated CI pipelines to identify vulnerabilities and code integrity flaws every 24 hours.

To protect our users and maintain the integrity of this health architecture, we use GitHub Private Vulnerability Reporting.

If you discover a security vulnerability, please do not open a public issue. Instead:

1. Go to the Security tab of this repository.
2. Select Vulnerability reporting from the left-hand sidebar.
3. Click Report a vulnerability to submit your findings privately.

We acknowledge all security reports within 48 hours and aim to provide a mitigation plan or patch within 7 days.

To protect the community, we request that you do not publicly disclose a vulnerability until we have had the opportunity to analyze and patch it. We follow a "Coordinated Disclosure" approach and will gladly credit you for your contribution to the project's resilience.

“Security is not a feature; it’s a foundational requirement for Global Health Equity.”