LITHOS prioritizes the security of critical infrastructure. We currently support the following versions with security updates:

We appreciate the work of security researchers in identifying vulnerabilities. To ensure the safety of critical energy systems, we ask you to follow this Responsible Disclosure Policy:

1. Do not open a public issue. Send reports to [SECURITY-EMAIL@DOMAIN.COM].
2. Provide a detailed summary of the vulnerability, including a Proof of Concept (PoC).
3. Allow the maintainers 90 days to address the issue before any public disclosure.

• We will acknowledge receipt of your report within 48 hours.
• We will provide an estimated timeline for a fix.
• We will credit you for your discovery in our security advisories (unless you prefer anonymity).