Skip to content

Security: ColinWaddell/FlightTracker

Security

SECURITY.md

Security Policy

Reporting a Vulnerability

If you discover a security issue in FlightTracker, please report it responsibly rather than opening a public GitHub issue.

Visit my website for contact details: www.colinwaddell.com

Include as much detail as you can - steps to reproduce, affected versions, and any potential impact. Reports will be acknowledged within 48 hours and I'll aim to provide a fix or mitigation as soon as reasonably possible.

Sharing Config Safely

If a security issue involves your configuration, do not paste your raw config.json - it may contain API keys and password hashes.

Use the "Download debug config" button in the footer of the Settings page in the web UI. This exports your configuration with all sensitive fields automatically replaced with ***REDACTED***, making it safe to share.

There aren't any published security advisories