Security policy

African Pastors Fellowship (APF) appreciates that security researchers are key to improving and maintaining the security of our systems. If you find a vulnerability you can report it by emailing us on evdev@africanpastors.org. Please note that as of late June 2020, only vulnerabilities relating to eVitabu will be added to our hall of fame.

We will investigate reports made in good faith and in line with this policy. So long as you abide by this policy, APF will not take legal action against you - please follow these guidelines:

• Provide details of the vulnerability to evdev@africanpastors.org. You should include instructions for reproducing the issue
• Do not aim to modify or damage data within the system
• Give us reasonable time to review, verify and fix the vulnerability
• Do not publicly disclose the vulnerability

Hall of fame

You can view our security researchers' hall of fame on our acknowledgments page. We acknowledge and thank people here, although you can elect to be excluded and remain anonymous.