Security

If you believe you found a security issue in Clockfresh, please report it privately before sharing details publicly.

• Contact. Send vulnerability reports to [email protected].
• Scope. The in-scope property is clockfresh.com and its public web app files.
• Please include. A short description, affected URL, reproduction steps, browser/device details, and any safe proof of impact.
• Please avoid. Destructive testing, spam, denial-of-service, social engineering, or accessing another person's data.

Clockfresh is a small static web project, so there is no paid bug bounty program at this time. Good-faith reports are still appreciated and will be reviewed as quickly as possible.

Last updated: 2026-06-24.