Responsible disclosure
Report suspected security issues privately before public disclosure.
Repository:
https://github.com/rokadhq/dhal
Security policy file:
SECURITY.md
Include
- affected version;
- minimal reproduction;
- expected impact;
- affected adapter or feature;
- whether issue affects runtime, CLI, telemetry, or config parsing.
Do not include secrets
Do not share real API keys, tokens, production logs, or full request bodies with sensitive data.
Use:
npx dhal report --output dhal.report.json
Review the generated report before attaching it.