Security fixes are applied to the live site at squadmaps.com. This repository holds translations and community files — vulnerabilities in the web application itself should be reported as below.
Please do not open a public GitHub issue for security vulnerabilities.
Instead:
- Use GitHub private vulnerability reporting if enabled, or
- Contact the maintainer via Discord and ask for a private channel.
Include:
- Description of the vulnerability
- Steps to reproduce
- Impact assessment (if known)
- Your contact details for follow-up
We aim to acknowledge reports within a reasonable timeframe and will keep you updated on remediation.
Thank you for helping keep SquadMaps safe for the community.