Please do not open a public GitHub issue for security vulnerabilities.
Report security issues by emailing security@warp.dev. Include:
- A description of the vulnerability and its potential impact
- Steps to reproduce or a proof-of-concept
- Any suggested remediation
We will acknowledge receipt within 2 business days and aim to provide a fix or mitigation within 14 days for critical issues.
This project is a local automation tool that reads from HubSpot and Metabase and posts to Slack. It does not expose any network services or HTTP endpoints.
All credentials are supplied via environment variables and are never committed to source control.