If you discover a security vulnerability within PokéEvent, please report it to our security team via email at security@pokemongoevents.com. We take all security reports seriously and will investigate promptly.
We aim to acknowledge receipt of vulnerability reports within 48 hours. Once the issue is validated, we will provide regular updates and work toward a timely resolution. Critical vulnerabilities are prioritized for immediate remediation.
PokéEvent does not collect or store personal information beyond what is strictly necessary for basic operation. We employ rate limiting, bot protection, and secure configuration to safeguard our infrastructure and users. All site data is sourced from publicly available information.
Our deployment leverages Cloudflare's security features, including bot protection, rate limiting, and AI Labyrinth to mitigate automated threats. We regularly review our infrastructure and configuration to maintain a strong security posture.
We kindly ask researchers to follow responsible disclosure practices. Please do not access or modify data without explicit permission, and avoid actions that could disrupt service for other users. Coordinated disclosure helps us address vulnerabilities quickly and safely.
We appreciate the efforts of security researchers who help keep PokéEvent safe. Submitted reports may be acknowledged publicly, unless you prefer to remain anonymous. Please let us know your preference when submitting a report.