Do NOT open a public GitHub issue for security vulnerabilities.
Please email: security@zarishsphere.com
We will respond within 48 hours and work with you on a responsible disclosure timeline.
| Version | Supported |
|---|---|
| latest | ✅ Yes |
- No secrets ever committed to any repository (enforced by GitGuardian)
- All container images scanned with Trivy on every PR
- FHIR AuditEvent logged for every PHI access
- Row-level tenant isolation in PostgreSQL