• Submit a private report via the security advisory form: https://github.com/blueshift-gg/blueshift-dashboard/security/advisories/new.
• Do not create public GitHub issues or discuss details publicly until we have confirmed and resolved the problem.
• Include a detailed description of the issue, steps to reproduce, and any proof-of-concept artifacts or logs that will help us triage quickly.

• We aim to release fixes as soon as possible; timelines depend on severity, complexity, and coordinated disclosure planning.

• Respect user privacy and data protection at all times; avoid accessing or modifying data that does not belong to you.
• Use your own accounts when possible and limit requests to what is necessary to demonstrate the vulnerability.
• Allow us reasonable time to investigate, triage, and remediate before any public disclosure.

Thanks for helping keep Blueshift safe for everyone.