If you identify a security issue, report it privately.
Do not disclose vulnerabilities publicly until remediation is complete.
- Security contact:
security@exceedsgroup.com
This policy applies to repositories and systems maintained by Exceeds Group and its operating companies, including Disboard Software, where applicable.
Please provide:
- Clear description of the issue
- Steps to reproduce
- Potential impact
- Any relevant logs, screenshots, or proof-of-concept details
- We will acknowledge receipt
- We will assess severity and impact
- We will coordinate remediation and follow-up communication
- We may request additional details during validation
Good-faith research and disclosure are supported.
Avoid actions that could degrade service, access non-public data without permission, or violate applicable law.