Security & responsible disclosure

We take the security of apxlbs.com and the systems we build for clients seriously. The site enforces strict HTTP security headers, content security policy, HSTS, and isolated iframe sandboxing on demo embeds.

Reporting a vulnerability. If you've found a security issue on apxlbs.com or in any system Apex Labs has built, please email [email protected] with the subject line Security Report. Please do not publish the issue publicly until we've had a reasonable opportunity to address it.

We commit to: acknowledging your report within 48 hours, working with you in good faith on remediation, and crediting you publicly if you'd like.

What we ask of you: please act in good faith, avoid privacy violations, never destroy data, and stop testing as soon as you've confirmed an issue.