TFGrid Studio takes security seriously. If you discover a security vulnerability, please report it responsibly.
Email: security@tfgrid.studio
Please include:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Any suggested fixes (optional)
- Acknowledgment: Within 48 hours
- Initial Assessment: Within 1 week
- Resolution Timeline: Depends on severity
- Credit: Security researchers will be credited (if desired)
- ❌ Create public GitHub issues for security vulnerabilities
- ❌ Publicly disclose the vulnerability before we've had a chance to fix it
- ❌ Exploit the vulnerability beyond what's necessary to demonstrate it
We follow coordinated disclosure:
- Report the issue to us privately
- We'll work on a fix
- We'll release the fix
- Public disclosure (with credit to reporter)
Security fixes are released as soon as possible and announced via:
- GitHub Security Advisories
- Release notes
Thank you for helping keep TFGrid Studio secure!