QuixiCore is a contract and documentation repository. Security issues in native backend implementations should be reported against the affected backend repository when possible:
QuixiAI/QuixiCore-CUDAQuixiAI/QuixiCore-MetalQuixiAI/QuixiCore-ROCmQuixiAI/QuixiCore-XPUQuixiAI/QuixiCore-GaudiQuixiAI/QuixiCore-CPU
For contract-level issues that affect multiple backends, open a private security advisory or contact the maintainers through the QuixiAI organization.
Do not disclose exploitable crashes, memory safety issues, model data leaks, or incorrect execution results publicly before maintainers have had a chance to assess the issue.