This policy applies to all repositories in the Pryv organization.

If you believe you have found a security issue in any Pryv project, we'd love to hear from you and we take all reports seriously.

Please report it privately through one of:

• GitHub Security Advisories — open a private report on the affected repository under its Security → Report a vulnerability tab (preferred).
• Email — info@pryv.com.

Please do not open a public issue for security reports.

• We will acknowledge your report and investigate.
• If confirmed, we will patch the issue within a reasonable amount of time and credit you if you wish.

Thank you for helping keep Pryv and its users safe.