# Reporting a Vulnerability

If the vulnerability is not critical, make an issue [here](https://github.com/e-dant/watcher/issues).

Critical vulnerabilities should be fielded directly to me at this email: edant.io@protonmail.com

I should respond within a day or two unless I'm on vacation.
If I'm on vacation, I'll probably respond on the same day.

Jokes aside, vulnerabilities are taken seriously.
You should expect regular updates on the mitigation strategy and timeline.