Skip to main content

Security Policy

Last updated: 2026-05-15

Reporting Vulnerabilities

Found a security issue in uptimepage? Email us at security@uptimepage.dev with subject [SECURITY].

Please do not publicly disclose vulnerabilities until we have acknowledged and addressed them.

What to Include

Our Response

We use the following severity definitions:

Disclosure Coordination

We follow coordinated disclosure. We'll work with you on a public disclosure timeline, normally:

You may request earlier disclosure if you have a good reason.

Acknowledgements

We maintain a public Hall of Fame for reporters in SECURITY.md on our GitHub repository. By default, we credit you with the name and (optional) link you provide. Anonymous reports are welcome too.

What's In Scope

What's Out of Scope

Safe Harbor

Good-faith security research consistent with this policy will not result in legal action. We will not pursue civil or criminal action for security research that:

Contact

security@uptimepage.dev