This project is currently maintained on the latest version in the default branch.

Please do not open a public GitHub issue for security-sensitive reports.

If you discover a vulnerability, report it privately to the maintainer first and include:

• A short description of the issue
• Steps to reproduce it
• The affected operating system and version
• Any proof-of-concept details that help confirm impact

Please allow reasonable time for investigation and remediation before public disclosure.

This application is designed to run locally on the user's machine.

• Video URLs are processed locally by the app
• Clip generation is performed locally with yt-dlp and ffmpeg
• The project should not require users to provide YouTube credentials
• Maintainers should never commit cookies, auth tokens, API keys, or personal secrets

If future changes introduce cloud processing, authentication, or telemetry, those behaviors should be clearly documented before release.