The ComposeFlow team and community take security bugs seriously. We appreciate your efforts to responsibly disclose your findings, and will make every effort to acknowledge your contributions.
Please do not report security vulnerabilities through public GitHub issues.
To report a security vulnerability, please use one of the following methods:
- Use GitHub's "Report a vulnerability" feature in the Security tab
- Send an email to thaigkura@composeflow.io
The ComposeFlow team will respond to your report and guide you through the next steps.
For vulnerabilities in third-party dependencies, please report them directly to the respective maintainers.