ACARS is an open-source, decentralized simulation with Nostr-based identity and event storage. We take security and safety seriously.
Please report security issues privately to:
- Email: opensource@anomalyco.com
Include:
- A clear description of the issue
- Steps to reproduce
- Impact assessment (what could be exploited)
- Any suggested fixes or mitigations
We will acknowledge receipt within 72 hours and provide a remediation timeline once confirmed.
We support the latest main branch and the most recent tagged release.
Please do not disclose vulnerabilities publicly until a fix has been released.