Skip to content

Security: TimeLordRaps/satisfiable-ai

Security

SECURITY.md

Security Policy

Reporting a Vulnerability

Report security vulnerabilities via GitHub Security Advisories — not via public issues.

Include:

  • Description of the vulnerability
  • Steps to reproduce
  • Affected version(s)
  • Potential impact

You will receive a response within 72 hours.

Scope

In scope:

  • Verification gate bypass in dataset filtering — samples classified as VERIFIED that contain logical contradictions
  • Dependency vulnerabilities in satisfaction-suffices, datasets, or torch
  • Issues in VerifiedDataset or StreamingVerifiedDataset that silently pass unverified samples through strict=True mode

Out of scope:

  • Performance / throughput issues
  • Theoretical extractor coverage limitations (documented in the paper)
  • Issues in the upstream SAT solver — report those to satisfaction-suffices

Supported Versions

Version Supported
0.1.x Yes

Disclosure Policy

Confirmed vulnerabilities affecting filtering correctness will be patched and disclosed in the GitHub release notes.

There aren’t any published security advisories