# security.txt for workoutgen.app
# We are two people building WorkoutGen in France from a small garage-style setup:
# 1 developer and 1 sports coach.
# We welcome good-faith, ethical, and responsible vulnerability reports.
# We currently do not offer a bug bounty or any financial rewards.

Contact: mailto:security@workoutgen.app
Contact: https://workoutgen.app/security/
Expires: 2027-02-15T00:00:00Z
Preferred-Languages: en, fr
Policy: https://workoutgen.app/security/
Canonical: https://workoutgen.app/.well-known/security.txt

# Please include in your report:
# - clear reproduction steps
# - measurable impact
# - affected scope (URL/endpoint)
# - proof of concept or screenshots when possible
#
# Please avoid data exfiltration and service disruption.