Veleiro AI, Inc.  

Reporting Security Issues

We take the security of Veleiro AI seriously. If you believe you have found a security vulnerability, please report it to us as described below.

Please DO NOT report security vulnerabilities through public GitHub issues, discussions, or pull requests.

Instead, please send an email to security@veleiro.ai.

What to Include

To help us better understand and resolve the issue, please provide:

  • Description of the issue
  • Steps to reproduce the issue
  • Affected versions/components
  • Any relevant screenshots or proof of concept
  • Potential impact of the vulnerability

Response Process

After you report a vulnerability:

  1. We will acknowledge receipt of your report within 48 hours
  2. Our security team will investigate and assess the impact
  3. We will keep you informed about our progress
  4. Once fixed, we will notify you and provide details of the resolution

Scope

This policy applies to any vulnerabilities you find within Veleiro AI's systems and services.

Testing must not violate any law or compromise any data. Please make a good faith effort to avoid privacy violations, degradation of user experience, disruption to production systems, and destruction or manipulation of data.

Safe Harbor

We consider security research conducted consistent with this policy to constitute "authorized" conduct under the Computer Fraud and Abuse Act, the DMCA, and other applicable computer use laws. We will not pursue civil action or initiate a complaint to law enforcement for accidental, good faith violations of this policy.

© 2025 Veleiro LLC