Security fixes are applied to the latest public release line.

Please do not publish sensitive security findings as a public issue before there is a reasonable opportunity to review them.

For suspected vulnerabilities, open a GitHub issue with a minimal, non-sensitive description or contact the project through the GitHub profile linked from the repository. Include:

• affected version or commit;
• operating system;
• steps to reproduce;
• expected and actual behavior;
• impact and suggested mitigation, if known.

ARNet Discovery is a network discovery and evidence tool. Use it only on networks where you are authorized to test. It is not intended to bypass access controls, scan third-party networks, or replace formal cyber-security, commissioning, or protection-system procedures.