# Security Policy

## Reporting a Vulnerability

We are grateful for security researchers and users reporting a vulnerability to us first. To ensure that your request is handled in a timely manner and we can keep users safe, please follow the below guidelines.

- **Please do not report security vulnerabilities directly on GitHub.**

- To report a vulnerability, please email [admin@casdoor.org](admin@casdoor.org).