This policy applies to all QuadTechWorks repositories that do not define their own.

Please do not open a public issue for security problems. Report privately via:

• The affected repository's Security → Report a vulnerability (GitHub private advisories), or
• Email security@quadtechworks.in.

Please include reproduction steps and the affected repository/version. We aim to acknowledge within 5 business days.

A repository may override this policy with its own SECURITY.md.