Instead, please follow responsible disclosure:
- Email: evilmaxsec@proton.me
- PGP Key: Available on request
- Expected Response: Within 48 hours
- Detailed description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix (if any)
We take security seriously and will:
- Acknowledge receipt within 48 hours
- Investigate and validate the issue
- Develop and release a fix
- Credit the reporter (if desired)
This policy applies to vulnerabilities found in:
- TheWatcher source code
- PHP server implementation
- Template security
- Social engineering aspects (this is intentional for training)
- Browser permission prompts (standard browser behavior