If you discover a security vulnerability in the OpenTDF platform, please follow these steps:

1. Do not open an issue on the public repository.
2. Email the details of the vulnerability to security@opentdf.io or by opening a draft Github Security Advisory.
3. Include a detailed description of the vulnerability, including the steps required to reproduce the issue.
4. We will review your report and respond in a timely manner with an update on our progress toward fixing the issue.

To encourage responsible disclosure of security vulnerabilities, we request that you keep any details of the vulnerability confidential until a fix has been implemented and released. We are committed to addressing all reported security vulnerabilities in a timely manner.

For any questions or concerns regarding security, please contact our security team at security@opentdf.io.

Thank you for helping us keep OpenTDF secure!