PhotoStructure's responsible disclosure security policy
We consider the security of our users a top priority.
Unfortunately, there may be vulnerabilities found in any software, and PhotoStructure is not an exception.
Supported Versions đź”—
Only the latest, released version of PhotoStructure is supported. If a vuln is
found in a prerelease (-alpha
or -beta
), please disclose those as well.
Reporting a security issue đź”—
If you find a vulnerability in PhotoStructure, or even think you have, please contact us via a private channel:
- send an email to [email protected], or
- send a direct message to @PhotoStructure on forum.photostructure.com, or
- send a direct message to @PhotoStructure on Twitter.
Expect a reply in under 36 hours. Please try an alternative contact method if you don’t get a response.
Please do not open a public GitHub issue to report vulnerabilities.
We kindly ask you to refrain from malicious acts that put our users, the project, or any of the project’s team members at risk.
Thank you! đź”—
Your efforts to responsibly disclose your findings are sincerely appreciated and will be taken into account to acknowledge your contributions.