Welcome to the security policy for Trade Pro β a robust and evolving Flutter application dedicated to delivering high-quality user experiences and reliable data handling. The security of our users and their data is a top priority. Please read below for supported versions and how to report vulnerabilities.
We only provide security patches and vulnerability fixes for the latest stable release:
| Version | Status |
|---|---|
| 1.0.1 | β Supported |
| < 1.0.1 | β Unsupported |
Please ensure you are always using the most recent release to stay protected.
We welcome responsible disclosure of any discovered vulnerabilities. If you believe you've found a potential security issue or exploit in Trade Pro, please follow the process below:
- Clear description of the issue.
- Steps to reproduce it.
- Impact or potential risk.
- Screenshots or logs if applicable.
- Email: tradepro.security@protonmail.com
- GitHub: Open a private security advisory
- We aim to respond within 48 hours.
- If confirmed, a patch will be created and deployed quickly.
- If requested, proper credit will be given in the changelog and release notes.
- Please do not disclose the vulnerability publicly before it has been resolved.
- All reports are handled with discretion and professionalism.
- Exploiting vulnerabilities without reporting them will be considered unethical and may lead to legal action.
Thank you for contributing to the safety and integrity of Trade Pro.
Together, we keep this project secure and trustworthy.