Home Plugin UI
Security

Security vulnerability reporting

This page documents how to report security issues for the figmaai.vercel.app service and related plugin workflow. Reports are reviewed and triaged as soon as practical.

How to report

Email: abcd49800@gmail.com
Subject: Security vulnerability report
Include: affected URL, steps to reproduce, impact, and screenshots if useful.

Response process

  • Acknowledge reports within 3 business days.
  • Triage severity and scope.
  • Coordinate a fix or mitigation before public disclosure when possible.
  • Keep reporters updated until the issue is resolved.

What to report

  • Authentication or authorization bypasses
  • Data exposure or leakage
  • Cross-site scripting or request forgery
  • Unsafe file handling or access control issues

Safe disclosure

  • Avoid accessing or exfiltrating user data beyond what is needed to demonstrate the issue.
  • Avoid destructive testing against production systems.
  • Allow reasonable time to investigate and fix before public disclosure.

This page is public and can be used as the security vulnerability process reference for review.