The claude-equity-research project maintains security support for the following versions:

As this is a Claude Code command-based tool, we recommend always using the latest version from the main branch.

We take security seriously for this financial analysis tool. If you discover a security vulnerability, please follow these guidelines:

Email: [email protected]

Subject: [SECURITY] Brief description of the issue

Please provide the following information in your report:

• Description of the vulnerability
• Steps to reproduce the issue
• Potential impact assessment
• Affected versions or components
• Any suggested fixes or mitigations

• Initial Response: Within 48 hours of receipt
• Assessment: Within 5 business days
• Resolution: Depends on severity, typically within 2-4 weeks

If the vulnerability is accepted:

• We will work with you to understand and resolve the issue
• Credit will be given in our security acknowledgments (unless you prefer anonymity)
• A security advisory will be published once the fix is available

If the vulnerability is declined:

• We will provide a clear explanation of why it was not considered a security issue
• Alternative reporting channels may be suggested if appropriate

We ask that you:

• Allow us reasonable time to investigate and address the issue before public disclosure
• Avoid accessing or modifying data that doesn't belong to you
• Contact us immediately if you inadvertently access sensitive information

This tool provides financial analysis for educational purposes only. Please report any issues that could lead to:

• Manipulation of analysis results
• Injection of malicious content into reports
• Unauthorized access to user systems
• Data integrity problems in financial calculations

Important: This tool is for educational purposes only and is not financial advice. Security vulnerabilities do not constitute financial liability on our part.