Thanks for helping keep GitBench and its users safe. We take security reports seriously and appreciate responsible disclosure.

GitBench is an actively developed open-source app. Security fixes target the latest release on the main branch. Released binaries are signed and notarized, so the macOS builds you install through the official channels are verified by Apple before they run.

Please report security issues privately — do not open a public GitHub issue for anything security-sensitive.

Use either of these channels:

• Email: tugkan@pilka.com.tr
• GitHub Security Advisories: open a private report via the Security Advisories page for this repository.

When you report, include as much as you can:

• a description of the issue and its impact,
• steps to reproduce or a proof of concept,
• affected version, OS, and configuration,
• any suggested remediation.

• We aim to acknowledge your report within 48 hours.
• We'll keep you updated on our assessment and the remediation timeline.
• Once a fix ships, we're happy to credit you for the disclosure unless you'd prefer to remain anonymous.

Please give us a reasonable window to investigate and release a fix before any public disclosure. Thank you for acting responsibly.