DBYTE is alpha software. Treat the language runtime, DByteOS userland, and Kernel Lab as experimental.
Security reports are most useful when they affect:
- DByte parser, type checker, interpreter, compiler, or VM behavior.
- File, buffer, binary patching, or module loading workflows.
- DByteOS userland scripts that model permissions, diagnostics, workspace state, or shell behavior.
- Kernel Lab code paths that affect boot, exceptions, IDT, IRQ, PIC planning, VGA, serial, or VM probe behavior.
- Build artifacts under
target/orkernel-lab/target/. - Old release bundles, zip packages, unpacked release folders, or local scratch files.
- Reports requiring real hardware execution outside the documented Kernel Lab flow.
Open a private security advisory on GitHub when possible, or contact the maintainer through the repository profile.
Please include:
- A short impact summary.
- Exact files or commands involved.
- Reproduction steps.
- Expected behavior and observed behavior.
- Whether the issue affects host DByte, DByteOS userland, Kernel Lab, or release packaging.
The maintainer will prioritize reports that are reproducible, scoped, and tied to tracked source files.