If you discover a security vulnerability in Alfred, please report it responsibly.

Email: junaidkbr@gmail.com

What to expect:

• Acknowledgment within 48 hours
• Status update within 7 days
• Fix target for critical issues: 7 days

Please do not open a public GitHub issue for security vulnerabilities.

This policy covers the Alfred browser extension source code and any associated infrastructure (edge functions, build scripts). It does not cover the Chrome Web Store listing or third-party dependencies.