RapidCAM is a client-side web application. It runs entirely in the browser — there is no server component, no user accounts, and no data is transmitted anywhere. The attack surface is limited to:
- Malicious SVG files imported by the user
- Malicious
.rapidcamproject files opened by the user
If you find a security issue, please do not open a public issue. Instead, email jenni.b@gmail.com with:
- A description of the vulnerability
- Steps to reproduce
- Any proof-of-concept file or code
You will receive a response within 5 business days. If the issue is confirmed, a fix will be prioritised for the next release and you will be credited (unless you prefer to remain anonymous).
Only the latest release is actively maintained.