Please do not report security vulnerabilities through public GitHub Issues.
If you believe you have found a security vulnerability in the Scalable CLI, email:
Include enough detail for us to understand and reproduce the issue, such as the affected CLI version, operating system, commands involved, expected impact, and any relevant logs or proof of concept.
Do not include access tokens, refresh tokens, device codes, account IDs, portfolio IDs, order IDs, personal financial data, or other sensitive information unless it is necessary to explain the vulnerability.
You must not have compromised the privacy of our clients or otherwise violated the Scalable Capital Terms & Conditions: https://de.scalable.capital/en/documents
We will review your report and follow up through the security contact channel.