If you discover a security vulnerability in xBridge MCP, please report it responsibly.
Email: hello@xbridgemcp.com
What to include:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix (if any)
Response timeline:
- Acknowledgment within 48 hours
- Assessment within 7 days
- Fix or mitigation within 90 days
Please do not:
- Open a public GitHub issue for security vulnerabilities
- Exploit the vulnerability beyond what is necessary to demonstrate it
- Share details publicly before a fix is available
We appreciate responsible disclosure and will credit reporters (with permission) in the fix announcement.