| Version | Supported |
|---|---|
| 2.0.x | ✅ |
| < 2.0 | ❌ |
If you discover a security vulnerability in CosmoRisk, please report it responsibly.
- DO NOT create a public GitHub issue for security vulnerabilities
- Send an email to: spacegumus@gmail.com
- Include the following information:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix (if any)
- Initial Response: Within 48 hours
- Status Update: Within 7 days
- Resolution: Depends on severity (critical: 24-48h, high: 7 days, medium: 30 days)
- We follow responsible disclosure practices
- We will credit researchers who report valid vulnerabilities (unless anonymity is requested)
- Please allow us reasonable time to fix the issue before public disclosure
This application:
- Does not store NASA API keys on any server (local storage only)
- Does not collect or transmit personal data
- Uses HTTPS for all API communications
- Runs in a sandboxed Tauri environment
- Security issues: spacegumus@gmail.com
- General inquiries: spacegumus.com.tr
Last updated: 18.12.2025