This repository is currently in an internal-review phase and is not yet publicly published.

Security fixes are applied to the active development line (dev) and included in the next release cut to main.

Please do not report security vulnerabilities in public issues.

Report vulnerabilities privately to:

• Email: opensource@amadeus.com
• Subject: [SmartErrorHandler][Security]

Please include:

• A clear description of the issue
• Reproduction steps or proof of concept
• Potential impact and affected component (frontend/backend)
• Suggested mitigation (if available)

• Acknowledgement target: within 5 business days
• Triage target: within 10 business days
• Mitigation or remediation plan: within 30 calendar days

• Acknowledgement target: within 3 business days
• Triage target: within 7 business days
• Mitigation or remediation plan: within 21 calendar days

These are target timelines and may vary based on severity and complexity.

• Coordinated disclosure is requested.
• We may delay public disclosure until a fix or mitigation is available.
• Once resolved, disclosure details may be included in release notes.