Kranti handles sensitive civic reports and should be treated carefully.
If you find a security issue, do not open a public issue. Contact the maintainers privately through the appropriate security channel for the repository or organization.
Include:
- A short summary of the issue
- The affected page, route, or workflow
- Steps to reproduce
- Any proof of concept or impact details
- Personal data that is not necessary to understand the issue
- Public disclosure before a fix is ready
- Sensitive credentials, tokens, or secrets in chat or screenshots
Security concerns include authentication, authorization, data exposure, file uploads, moderation, and any handling of sensitive user-submitted content.