# MEMEX security disclosure policy (RFC 9116)
# https://memeeeeeex.com/.well-known/security.txt

Contact: mailto:security@memeeeeeex.com
Expires: 2027-05-14T00:00:00.000Z
Preferred-Languages: ja, en
Canonical: https://memeeeeeex.com/.well-known/security.txt

# Scope
# - memeeeeeex.com (apex + www)
# - github.com/UrtYottaro/memex (private repo)
#
# Out of scope
# - Subdomains not listed above
# - Issues in third-party services (Cloudflare, GitHub, simpleicons.org, youtube-nocookie.com)
# - Reports requiring social engineering or physical access
#
# Response
# - We aim to acknowledge within 5 business days
# - There is no bug-bounty program; thanks-only disclosure is standard