Last updated: June 6, 2026
Security Disclosure
If you believe you found a security issue in Webhook Scheduler, email security@webhookscheduler.com with enough detail to reproduce and assess the report.
Safe testing
Good-faith reports should avoid:
- Accessing, modifying, deleting, or exfiltrating customer data.
- Denial-of-service, spam, load testing, or resource exhaustion.
- Social engineering, phishing, or physical attacks.
- Testing third-party systems through Webhook Scheduler without authorization.
What to include
- A clear summary of the issue.
- Steps to reproduce on your own account or test data.
- Potential impact and affected endpoints.
- Any suggested mitigation.
Response
We aim to acknowledge security reports within 1 business day. This is not a bug bounty program, and rewards are not guaranteed.
Related policies
See the security model, privacy policy, and support policy.