We release security updates for the following versions:

If you discover a security vulnerability in EVE Flipper, please report it responsibly:

1. Do not open a public GitHub issue for security-sensitive bugs.
2. Send a private report to the maintainers:
   • Open a private security advisory on GitHub: Security Advisories, or
   • Contact the repository owner via the email or contact method listed on their GitHub profile.
3. Include:
   • A clear description of the vulnerability
   • Steps to reproduce
   • Impact (e.g., data exposure, local only, etc.)
   • Your EVE Flipper version and OS (if relevant)

We will acknowledge your report and work on a fix. We appreciate your help in keeping the project and its users safe.

• EVE Flipper runs locally; market and scan data stay on your machine.
• Optional EVE SSO login uses official CCP OAuth; we do not store your credentials.
• See the Wiki for details on what data is sent to ESI and what is stored locally.