Public support currently covers:
- Linux
x86_64 - NVIDIA GPUs
- CUDA Toolkit 13.x
GitHub-hosted CI is non-GPU only. GPU validation and release validation happen outside GitHub Actions on a real CUDA machine. Reports that depend on unsupported platforms may still be reviewed, but fixes and response times are best-effort.
Please do not open public GitHub issues for suspected security vulnerabilities.
Report vulnerabilities privately through one of these channels:
- Use GitHub's private vulnerability reporting flow for this repository if the
Report a vulnerabilitybutton is available. - If private vulnerability reporting is not available in the repository UI, use the BrainyBlaze private contact form at
https://brainyblaze.com/contactand includeSECURITY: XLOG vulnerability reportin the first line of the message.
Include, when possible:
- affected version, branch, or commit SHA
- impact summary
- reproduction steps or proof of concept
- whether the issue requires the supported Linux
x86_64+ NVIDIA CUDA environment - GPU model, NVIDIA driver version, and CUDA version if the issue is CUDA-related
We will acknowledge receipt, triage the report, and work toward a fix before public disclosure. Please give us reasonable time to investigate and prepare a coordinated response.
- Setup questions, unsupported platforms, and generic correctness bugs should go through normal GitHub issues.
- CUDA-specific security reports should clearly state whether they were reproduced on the supported platform contract.
- We may ask reporters to retest against the latest
mainbranch or a candidate fix.