Security fixes are delivered in the next available release whenever possible. If you are testing a local or modified build, please verify the issue against the latest upstream code before reporting it.

Please do not open a public GitHub issue for suspected security vulnerabilities.

Instead, send a report to evgeniy.petrukovich@icloud.com with the subject line:

DynamicNotch Security Report

Please include:

• A clear description of the issue
• The affected version, release tag, or commit hash
• Your macOS version and Mac model, if relevant
• Step-by-step reproduction details or a proof of concept
• The possible impact you identified
• Any logs, screenshots, or crash details that help reproduce the problem

Reports may be submitted in English or Russian.

• An acknowledgement within 5 business days when possible
• Follow-up questions if more detail is needed
• Status updates during triage and remediation
• A fix or mitigation in a future release when the issue is confirmed

Please allow reasonable time for investigation and a coordinated fix before public disclosure.

If you are unsure whether something is security-related, report it anyway and it will be triaged.