Security Policy

I take security seriously and welcome responsible disclosure of vulnerabilities.

Security
Responsible Disclosure

How to report security vulnerabilities responsibly

I appreciate security researchers who help me maintain the security and privacy of my website visitors. If you discover a security vulnerability, I encourage you to report it to me responsibly.

What to report:

  • Cross-site scripting (XSS)
  • SQL injection
  • Authentication bypass
  • Data exposure
  • Privilege escalation
  • Any other security-related issues

How to Report

Steps to follow when reporting a security vulnerability

1

Email me directly

Send your report to: joel.hagvall1@gmail.com

2

Include detailed information

Provide a clear description of the vulnerability, steps to reproduce, and potential impact.

3

Allow time for response

I will acknowledge your report within 48 hours and provide updates on my progress.

What to Expect

My response process and timeline

48 hours

Initial acknowledgment of your report

1-2 weeks

Assessment and validation of the vulnerability

2-4 weeks

Fix development and testing

Upon fix

Public disclosure and acknowledgment

Guidelines

Important guidelines for security researchers

Do

  • • Test only on your own accounts or with explicit permission
  • • Avoid accessing or modifying other users' data
  • • Use the provided contact method for reporting
  • • Provide sufficient detail to reproduce the issue

Don't

  • • Perform actions that could harm the service or other users
  • • Access, modify, or delete data that doesn't belong to you
  • • Disclose the vulnerability publicly before we've had time to fix it
  • • Use automated tools that could impact service performance

Recognition

How we acknowledge security researchers

Security researchers who responsibly disclose vulnerabilities will be acknowledged on this page (with their permission) and may be eligible for recognition in my security hall of fame.

Contact Information

Get in touch for security-related matters

Security Email: joel.hagvall1@gmail.com

Security.txt: /.well-known/security.txt

For general inquiries, please use the contact information on my about page.