Skip to content

Security: halbritter-lab/ChIC

Security

SECURITY.md

Security Policy

ChIC is an informational/educational research tool, not a medical device and must not be used for diagnosis or treatment decisions.

Reporting a vulnerability

Please report security issues privately rather than opening a public issue.

  • Email the maintainers at jan.halbritter@charite.de with the subject ChIC security.
  • Include a description, reproduction steps and impact assessment.

You can expect an acknowledgement within 5 working days. Please give us a reasonable window to investigate and release a fix before any public disclosure.

Scope

This is a static single-page application deployed to GitHub Pages. It processes patient-entered data client-side only — no data is transmitted to a server. Reports about client-side data handling, dependency vulnerabilities and the build / deploy pipeline are all in scope.

There aren't any published security advisories