Publish the vulnerability reporting route and the site security stance.
FUNTHEORY Product Studio uses static deployment, HTTPS, least-privilege hosting routes where practical, and centralized release management to reduce the attack surface.
Secrets are intended to remain outside the web root and under local encrypted vault control during deployment operations.
If you identify a genuine security issue affecting https://funtheory.online, report it to support@funtheory.online.
Include reproduction detail, affected URLs or products, impact, and any supporting evidence needed for verification.
Reports are triaged by severity. Service-impacting issues and credential exposure are treated as priority incidents.
Security contact details are also published in machine-readable form through security.txt for automated discovery.