Expo · Vulnerability Disclosure

Expo Vulnerability Disclosure

Vulnerability disclosure

Expo publishes a vulnerability disclosure policy for reporting security issues. A machine-readable /.well-known/security.txt is served. A dedicated security contact is published.

React NativeMobile DevelopmentBuild AutomationOver-the-Air UpdatesCI/CDApp Store SubmissionPush NotificationsCloud BuildDeveloper Tools
Program: security.txt present

Disclosure Policy

Security Contact

Contact
mailto:vulnerability-disclosures@expo.dev

Source

Vulnerability Disclosure

expo-vulnerability-disclosure.yml Raw ↑
generated: '2026-07-11'
method: searched
probe: true
source: https://expo.dev/.well-known/security.txt
contact:
- mailto:vulnerability-disclosures@expo.dev
evidence:
- source: https://expo.dev/.well-known/security.txt
  kind: security.txt (live probe)