We take security seriously. If you discover a security vulnerability, please report it privately.
Do not open a public issue for security vulnerabilities.
Email security concerns to: security@supercheck.io
Include:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix (if any)
When deploying Supercheck:
- Use environment variables for all secrets
- Enable HTTPS in production
- Keep dependencies updated
- Use strong passwords and API keys
- Restrict database and Redis access
- Regular security audits recommended