Please send us your report via GitHub Security Advisories or by email to security@mosparo.io. Please send us as much information as you can. We ask you to avoid creating public issues before notifying us of any vulnerabilities. We will process all reported vulnerabilities with the highest priority.
We prefer encrypted emails. You can find our PGP public key at https://mosparo.io/.well-known/pgp-key.txt
Please see all our security information at https://mosparo.io/.well-known/security.txt
Thank you for your help in improving the security of mosparo.