If you discover a security vulnerability in securecloudX, please do not open a public issue.
Instead, email us at securecloudx.learn@gmail.com with:
- A description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix (if any)
We will acknowledge your report within 48 hours and aim to release a fix within 7 days for critical issues.
This policy applies to:
- The securecloudX web application (securecloudx.xyz)
- This GitHub repository and its dependencies
- Third-party services (Supabase, GitHub OAuth) — report to those providers directly
- Social engineering attacks against contributors
- Denial of service attacks
We appreciate responsible disclosure and will credit reporters in the changelog (with your permission).
Thank you for helping keep securecloudX safe.