# Security Policy for Runframe
# RFC 9116 compliant security.txt

Contact: mailto:security@runframe.io
Contact: https://runframe.io/contact
Expires: 2027-12-31T23:59:59.000Z
Preferred-Languages: en
Policy: https://runframe.io/security
Canonical: https://runframe.io/security.txt

# Our security practices
# - We accept reports through security@runframe.io
# - We use HTTPS/TLS for data in transit
# - Production access is restricted to authorized personnel
# - Runframe uses role-based authorization and audit logging

# Reporting security issues
Please report security vulnerabilities to: security@runframe.io

# Additional policy details
See https://runframe.io/security for our Partner Security Policy.