| Version | Supported |
|---|---|
| 2.x (current) | ✅ |
| < 2.0 | ❌ |
Please do not open a public GitHub issue for security vulnerabilities.
If you discover a security issue in KetoTrack, report it privately by:
- Going to the GitHub Security Advisories page and submitting a private advisory, or
- Contacting the author directly via GitHub profile: github.com/TimMasalme
Please include:
- A description of the vulnerability
- Steps to reproduce
- Potential impact
- Any suggested fix (optional)
You can expect an initial response within 7 days. Please allow reasonable time for the issue to be investigated and patched before any public disclosure.
KetoTrack stores all data locally on the user's device. There is no backend, no API, and no network communication. The primary security surface is therefore:
- The Electron main process (desktop)
- Capacitor WebView security (Android)
- localStorage data integrity
Thank you for helping keep KetoTrack secure.