Privacy policy

Information processed

LegacyFixer may process repository metadata, GitHub installation identifiers, selected repository names, branch information, dependency files needed for scanning, scan results, job status, timestamps, failure reasons, and pull request metadata if a pull request is created.

Purpose

This information is used to run dependency-security scans, record scan status, diagnose operational failures, and provide maintainers with reviewable results.

Controlled access

During controlled access, LegacyFixer should be used only with public, non-sensitive repositories selected for testing or evaluation.

Do not submit secrets, access tokens, private logs, confidential source code, or sensitive repository contents through email or public issue comments.

Contact

For privacy questions or removal requests, use the branded contact address that will be published before public onboarding opens.