The Defense Unicorns team and community take security issues in peat-flutter
seriously. We appreciate your efforts to responsibly disclose your findings.
Please do not report security vulnerabilities through public GitHub issues.
Instead, report them by email to security@defenseunicorns.com.
If possible, please include:
- A description of the issue and the type of vulnerability.
- The affected version(s) or commit, and the platform(s) involved (Android, iOS, macOS, Linux, Windows).
- Step-by-step instructions to reproduce, including any proof-of-concept code.
- The potential impact, including how an attacker might exploit it.
You should receive an acknowledgement within 3 business days. We will keep you informed of the progress toward a fix and may ask for additional information.
peat-flutter is pre-1.0 and under active development. Security fixes are
applied to the latest release on the main branch. Please ensure you are on the
most recent version before reporting an issue.
We follow a coordinated disclosure process. We ask that you give us a reasonable amount of time to address the issue before any public disclosure, and we will work with you to determine an appropriate disclosure timeline.