Skip to content

Security: spfunctions/simplefunctions-cli

Security

SECURITY.md

Security Policy

Reporting a Vulnerability

If you discover a security vulnerability in SimpleFunctions, please report it responsibly.

Email: patrick@simplefunctions.dev

Please include:

  • Description of the vulnerability
  • Steps to reproduce
  • Potential impact

We will acknowledge your report within 48 hours and aim to release a fix within 7 days for critical issues.

Scope

  • SimpleFunctions CLI (@spfunctions/cli)
  • SimpleFunctions REST API (simplefunctions.dev/api/*)
  • SimpleFunctions MCP Server (simplefunctions.dev/api/mcp/mcp)

Out of Scope

  • Third-party exchange APIs (Kalshi, Polymarket)
  • User-generated thesis content

There aren’t any published security advisories