The GeoGPT Team takes the security of our models and services seriously, which includes all repositories managed through our GitHub organizations. If you believe you have found a security vulnerability, please report it to us as outlined below.

Please report security vulnerabilities to the GeoGPT Team at support.geogpt@zhejianglab.org.

You can expect a response within 24 hours.

When submitting a report, please provide as much of the following information as possible to help us understand the nature and scope of the issue:

• Type of issue (e.g. buffer overflow, SQL injection, cross-site scripting, etc.)
• Full paths of source files related to the issue
• Location of the affected code (tag/branch/commit or direct URL)
• Any special configuration required to reproduce the issue
• Step-by-step instructions to reproduce the issue
• Proof-of-concept or exploit code (if available)
• Impact of the issue, including potential exploitation by an attacker

This information will help us prioritize and resolve the issue quickly.

The GeoGPT Team adheres to the principle of responsible disclosure and works to resolve security issues as promptly as possible. Our goal is to ensure the safety of our users and the integrity of our software.