This project is currently in active development. We support the following versions:

We take the security of Image AI seriously. If you believe you've found a security vulnerability, please follow these steps:

1. Do not disclose the vulnerability publicly
2. Email the maintainers with details about the vulnerability
3. Include steps to reproduce, impact, and potential remediation if possible
4. We will acknowledge receipt of your report within 48 hours

We'll work with you to understand and address the issue promptly, typically within 14 days. We appreciate your help in keeping this project and its users secure.

This application implements several security measures:

1. Environment Variables: Sensitive configuration is stored in environment variables, not in code
2. API Key Authentication: Optional API key authentication for production deployments
3. Input Validation: All inputs are validated using Pydantic
4. Safe Default Values: Conservative default settings are used for all parameters

When deploying this application:

1. Always use a non-root user
2. Enable API key authentication in production
3. Set appropriate resource limits
4. Consider deploying behind a reverse proxy with TLS