# RFC 9116 Security Contact for neogenesis.app
# Last reviewed: 2026-05-04

Contact: https://neogenesis.app/#contact
Expires: 2027-05-04T00:00:00.000Z
Encryption: https://neogenesis.app/.well-known/pgp-key.txt
Preferred-Languages: en, ko
Canonical: https://neogenesis.app/.well-known/security.txt
Policy: https://neogenesis.app/about
Acknowledgments: https://neogenesis.app/awards

# Disclosure scope:
#   In-scope: neogenesis.app + all *.neogenesis.app subdomains, plus the
#   Yesol-Pilot/neo-genesis GitHub repository and the neogenesislab Hugging
#   Face account (datasets + Spaces).
#   Out-of-scope: third-party services we link to (Wikidata, Zenodo, etc.).
#
# Disclosure policy:
#   Responsible disclosure preferred. Please email via the contact form
#   on /about, allow 14-30 days for triage. Coordinated disclosure
#   timelines are negotiable based on severity.
#
# Wikidata-anchored identity:
#   This security policy applies to assets owned by Wikidata Q139569680
#   (Neo Genesis) and Q139569708 (Yesol Heo, founder).