Security
Security and responsible disclosure
Report security issues through [email protected]. We welcome responsible reports that help protect LumenRadar, its users, and public-source workflows.
Report a security issue
Use the public security.txt file or support email for responsible reports. Do not submit secrets or private customer data.
- security.txt: /.well-known/security.txt
- Contact: [email protected]
- Include enough detail to reproduce the issue, its impact, affected URL or component, and a safe contact method.
- Please avoid accessing, changing, or retaining data that is not yours. Do not include secrets, credentials, or private customer data in a report.
Public security boundary
The public preview is intentionally limited and does not grant privileged capability access.
- No bypass, unauthorized access, paywall evasion, credential collection, or destructive testing.
- Public preview pages do not expose full MCP, public AI, payment, live search, or customer delivery automation.
- We may acknowledge, investigate, and coordinate remediation for valid reports.
Boundary
Security review does not enable public MCP, payment, live search, public AI, automatic report sending, or customer delivery.