Security Policy

Security Policy

I'm a solo developer, and this is not a legal document.
I just want to provide a bit of transparency to users.

Using third-party scripts means you trust that the script’s developer hasn’t inserted malicious functionality into the code and has secured it against attackers trying to do the same. You should never run code you don't trust.

What I'm doing to ensure this is safe for users:

1. This is an open-source project, it can be audited by anyone.
2. It is officially distributed via GreasyFork and OpenUserJS, so it can be independently audited, and reviewed.
   • I cannot edit or remove reviews there.
   • You can see here they actively moderate and remove mallicious scripts.
   • You can see all previous versions there.
3. Undiscord will NOT use external dependencies or dynamically download scripts or make external requests.
   It will only call the official Discord's API for the necessary core functionality.
4. Undiscord will NEVER collect or transmit any personal data.
5. No code obfuscation.
6. Inform users of the potential risks involved.
7. I will make sure I have good security habits regarding this GitHub account.
8. Lastly, I @victornpb will never accept or add malicious commits into THIS repository.
   (Be aware I have no control over forks from other users)

That said, you still have the final responsibility of what you run on your computer. Disclaimer

Note about Forks

This project is open-source, which means that anyone can make copies of this project (called forks), and make their own changes.
While I have full control over what goes into this repository, I DON'T have any control over forks of this project.

That means the terms above ONLY apply if you're using the original Undiscord.

• When using a fork, make sure to check their code, and only use it if you trust the author of that copy/fork.