Back to Home

Security Policy

We take the security of Chroma Ad-Blocker seriously. If you believe you have found a security vulnerability, please follow the disclosure process below.

Supported Versions

Currently, only the latest version of Chroma Ad-Blocker (the master branch) is actively supported with security updates.

Branch: master

Reporting a Vulnerability

If you discover a vulnerability, please send an email to dabrogost@gmail.com. Include a description, reproduction steps, and potential impact.

Private Disclosure

Safe Harbor

Chroma Ad-Blocker supports responsible security research. We will not pursue legal action against researchers who discover and report vulnerabilities in good faith, provided they: make a reasonable effort to avoid privacy violations or disruption to other users, do not exploit the vulnerability beyond what is necessary to demonstrate it, and report the issue privately before any public disclosure.

Disclosure Process

We value the work of developers and security researchers. Once a report is received:

  1. Acknowledgment: We will acknowledge your report as quickly as possible.
  2. Investigation: We will investigate the issue and determine the potential impact.
  3. Resolution: We will work on a fix and release an update via the GitHub repository.

[!IMPORTANT] Please do not open public issues for security vulnerabilities. We ask that you follow responsible disclosure practices to protect all users of the extension.