Report security issues privately to security@mirogate.com.

Do not open a public issue for vulnerabilities that expose active systems, secrets, credentials, or bypass details. Include enough reproduction detail for maintainers to understand the risk without publishing sensitive infrastructure data.

This project is a baseline hardening helper. It is not a compliance framework, managed security service, or guarantee of server safety.