# Security Policy for Till (till.ac) # https://securitytxt.org/ Contact: https://dbhurley.com/contact Expires: 2027-07-14T00:00:00.000Z Preferred-Languages: en Canonical: https://till.ac/.well-known/security.txt Policy: https://till.ac/security # Upstream keys are AES-256-GCM encrypted and embedded in scoped tokens. # Upstream credentials are not stored in the application database. # Do not include live credentials or exploit data in an initial report.