Note: This policy is currently a work in progress as we're ironing out our global security policy soon.

We use GiHub's private vulnerability reporting feature and our security issue tracker on GitLab to accept and review security reports relating to this project. You can also email security@crew.recaptime.eu.org with the subject prefix [SECURITY:squad-bots], perferrably with our PGP key or contact our team via Keybase.