update security guidelines and vulnerability reporting

SECURITY.md

@@ -65,6 +65,7 @@ We follow responsible disclosure practices:
 ### Vulnerability Categories We're Interested In
 
 **High Priority:**
+
 - Memory safety violations
 - Privilege escalation
 - Code injection vulnerabilities
@@ -72,15 +73,17 @@ We follow responsible disclosure practices:
 - Sensitive data exposure
 
 **Medium Priority:**
+
 - Denial of service
 - Information disclosure
 - Logic flaws in detection algorithms
 
 **Out of Scope:**
+
 - Issues requiring physical access
 - Social engineering attacks
 - Third-party dependency vulnerabilities (unless exploitable through Ghost)
 
 ---
 
-*Last updated: November 2025*
+*Last updated: November 2025*