If you discover a security vulnerability in DevRadar, please report it responsibly.
Do NOT create a public GitHub issue for security vulnerabilities.
Instead, please email us directly:
- Email: hey@devradar.dev
- Subject line: [SECURITY] - Brief description of the issue
Please include as much information as possible:
- Description of the vulnerability
- Steps to reproduce the issue
- Potential impact
- Suggested fix (if known)
We aim to acknowledge security reports within 24-48 hours and provide a fix or workaround within 7 days, depending on severity.
We actively maintain and secure the current version of DevRadar. Please ensure you're using the latest version.
- This repository contains documentation and public schemas only
- No sensitive data or credentials are stored here
- For the live application at devradar.dev, we follow industry best practices:
- HTTPS/TLS encryption
- Firebase Authentication (Google OAuth)
- No storage of sensitive user data
- Minimal cookie usage (see our Cookie Policy)
For privacy-related concerns, please see our Privacy Policy.
Thank you for helping keep DevRadar secure! 🛡️