If you discover a security vulnerability in Conservatio, please report it responsibly.
Do not open a public GitHub issue for security vulnerabilities.
Instead, email security concerns to: petros@peterdsp.dev
You should receive a response within 48 hours. Please include:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix (if any)
| Version | Supported |
|---|---|
| 0.x.x | Yes |
This policy covers:
- The Conservatio mobile apps (iOS and Android)
- The web companion
- The backend API and database schema
- Authentication and authorization
- Data storage and transmission
We appreciate responsible disclosure and will credit reporters (with permission) in our release notes.