HawkinsOperations is public portfolio and governed detection-engineering work. This repository does not provide production support, managed security monitoring, or a response SLA.

Do not post secrets, credentials, tokens, private hostnames, private paths, exploit details, or sensitive operational data in public issues, pull requests, discussions, or comments.

If GitHub Security Advisories are enabled for this repository, use a private security advisory for sensitive reports. If a public issue is the only available route, include only a minimal, sanitized summary with no secret values, no private infrastructure details, and no exploit instructions.

For urgent or sensitive reports, avoid publishing raw proof-of-concept material or private environment details publicly. A maintainer may ask for a safer reporting route before reviewing sensitive details.

Security reports should be limited to repository content, workflows, documentation, validation logic, or public release-hygiene concerns in this repository.

This policy does not create production readiness, runtime monitoring, public-safe runtime proof, signal-observed proof, incident response coverage, or any guarantee of remediation timeline.