To report a vulnerability in the IRIS project, please follow the steps below:

1. Contact: Send an email to [email protected]. Provide as much information as possible about the vulnerability, including steps to reproduce, potential impact, and any other relevant details.

2. Acknowledgment: I aim to acknowledge receipt of your report within 72 hours.

3. Communication: After acknowledgment, i will investigate the issue and keep you informed about our progress. I may contact you for additional information.

4. Disclosure: If the vulnerability is confirmed, i will work on a fix and plan a coordinated disclosure. I ask that you keep the issue confidential until i announce it.

5. Acknowledgments: I publicly acknowledge the contributions of those who have responsibly disclosed vulnerabilities once the issue has been resolved.

Remember, your contribution to the security of IRIS is greatly appreciated, and i take all reports seriously.