SECURITY.md

Security Policy

Reporting a Vulnerability

If you discover a security vulnerability, please report it responsibly by emailing the repository owner. Do not open a public issue.

Scope

rdsspectre is a read-only auditing tool. It does not modify any cloud resources. However, it handles cloud credentials and scan results that may contain sensitive infrastructure information.