Security Policy

Responsible Disclosure & Security Information

Reporting Security Issues

When reporting a vulnerability, please include:

• Description of the vulnerability
• Steps to reproduce
• Potential impact assessment
• Any proof-of-concept code (if applicable)
• Your contact information for follow-up

Scope

Responsible Disclosure Guidelines

We ask that you:

• Give us reasonable time to respond and remediate (minimum 90 days)
• Make a good faith effort to avoid privacy violations and data destruction
• Do not access or modify data that does not belong to you
• Do not perform attacks that could harm service availability
• Do not perform social engineering against our team or users
• Report vulnerabilities promptly and exclusively to us first

What We Commit To

• Acknowledge receipt of your report within 72 hours
• Provide an estimated timeline for remediation
• Notify you when the vulnerability has been fixed
• Credit you in our security acknowledgments (if desired)
• Not pursue legal action for good-faith security research

Security Measures

DRONESWARM.APP implements the following security measures:

• Transport Security: All communications encrypted via TLS 1.3
• Security Headers: Strict CSP, X-Frame-Options, X-Content-Type-Options
• No Sensitive Data: This is a demonstration site; no operational or sensitive data is stored
• Client-Side Processing: Demo data is generated and processed client-side only
• Regular Updates: Dependencies are monitored and updated regularly

security.txt

Our security.txt file is available at:

https://droneswarm.app/.well-known/security.txt

Acknowledgments

We would like to thank the following individuals for responsibly disclosing security issues:

No reports yet. Be the first!