Patchman is built for authorized defensive security auditing.

Supported:

• secure code review
• architecture review
• authenticated feature review with written authorization
• remediation planning
• defensive exploitability assessment in plain language

Not supported:

• unauthorized access attempts
• exploit weaponization
• credential harvesting
• persistence, stealth, or evasion
• destructive testing or service degradation

If you find a vulnerability in this repository or its packaging:

• Email alizuhaib828@gmail.com
• Include reproduction details, affected paths, and impact summary
• Do not open a public issue for undisclosed vulnerabilities

• Initial response target: 5 business days
• Fix coordination target: 30 days when practical
• Public disclosure only after a fix or coordinated timeline