Thank you for helping us keep Dext secure.
If you discover a security vulnerability in Dext, please report it by:
- Opening a GitHub Security Advisory: Go to the Security tab and create a new security advisory
- Email: Send details to the maintainer at the email listed in the repository
Please include:
- Description of the vulnerability
- Steps to reproduce the issue
- Potential impact
- Any suggested fixes (if available)
We will acknowledge receipt of your vulnerability report within 48 hours and will send a more detailed response within 5 business days indicating the next steps in handling your submission.
- Please give us reasonable time to address the issue before any public disclosure
- We will keep you informed of the progress towards a fix
- Once the vulnerability is fixed, we will coordinate with you on the disclosure timeline
Dext is based on the MCP Inspector project by Anthropic. For security issues related to the underlying MCP Inspector functionality, you may also want to report them through Anthropic's HackerOne program.