If you discover a security issue in FlightTracker, please report it responsibly rather than opening a public GitHub issue.
Visit my website for contact details: www.colinwaddell.com
Include as much detail as you can - steps to reproduce, affected versions, and any potential impact. Reports will be acknowledged within 48 hours and I'll aim to provide a fix or mitigation as soon as reasonably possible.
If a security issue involves your configuration, do not paste your raw
config.json - it may contain API keys and password hashes.
Use the "Download debug config" button in the footer of the Settings page
in the web UI. This exports your configuration with all sensitive fields
automatically replaced with ***REDACTED***, making it safe to share.