- Context menu prevention
- Text selection prevention
- Copy prevention
- Drag-and-drop prevention for images and content
- Media controls prevention
- User-generated content restrictions
- Protected profile images
- Secure external links (using target="_blank")
- Image drag protection
- Media controls disabled for video content
- Secure device detection system
- Operating system version detection
- Platform-specific security measures
- Privacy-focused device information handling
- Local storage encryption for theme preferences
- Secure time and date handling
- Protected user information
- Secured countdown mechanisms
- Protected theme toggle functionality
- Secure CSS variables
- Protected class names
- Secure DOM manipulation
- Protected creator information
- Secure social links
- Protected follower counts
- Verified badge protection
- Secure event modal functionality
- Event details protection to prevent unauthorized access
- Highlighting current day securely based on the user’s timezone
- Consistent styling and theming across all sections for improved security against UI manipulation
- Protected layout components to prevent unauthorized alteration
- Prevent unauthorized interaction with event calendar details
- Protected event data and indicators from tampering
- Secure implementation of the light/dark mode toggle to prevent unauthorized changes
- Secure handling of font size adjustments to prevent unauthorized changes
To report a security vulnerability, please follow these steps:
- DO NOT create a public GitHub issue for security vulnerabilities
- Create a private security advisory on GitHub
- Include the following information:
- Type of vulnerability
- Location of the vulnerability
- Steps to reproduce
- Potential impact
- The website undergoes regular security updates
- Security patches are implemented as soon as vulnerabilities are discovered
- Users are notified of significant security updates through the version info section
- Current stable version is v1.16.0
-
For Users:
- Keep your browser updated
- Use secure and up-to-date operating systems
- Report any suspicious activity
- Do not attempt to circumvent security measures
- Enable JavaScript, Location, and Cookies for features to work properly on the website.
- For users accessing the website on TikTok, please follow these steps to access the weather feature:
- Tap the three dots in the right-hand corner of the TikTok app.
- Select "Open in Browser" to enable location access for the weather feature, as the TikTok browser prevents location detection.
-
For Contributors:
- Follow secure coding practices
- Test security features before submitting changes
- Keep dependencies updated
- Review code for security vulnerabilities
| Version | Supported |
|---|---|
| 1.16.0 | ✅ |
| 1.15.0 | ❌ |
| 1.14.0 | ❌ |
| 1.13.0 | ❌ |
| 1.12.0 | ❌ |
| 1.11.0 | ❌ |
| 1.10.1 | ❌ |
| 1.10.0 | ❌ |
| 1.9.x | ❌ |
| 1.8.x | ❌ |
| 1.7.x | ❌ |
| 1.6.x | ❌ |
| 1.5.x | ❌ |
| 1.4.x | ❌ |
| 1.3.x | ❌ |
| < 1.3 | ❌ |
For any security-related concerns, please contact:
- GitHub: @BusArmyDude
- Create a private security advisory: Security Advisory
- Repository: BusArmyDude/busarmydude
- Language Composition:
- JavaScript: 60.9%
- CSS: 24.9%
- HTML: 14.2%
We appreciate the security community's efforts in responsibly disclosing vulnerabilities and helping maintain the security of our website.
This security policy is version 1.16.0 and was last updated on 2025-5-8 at 9:40 AM EST.
This document is maintained by @BusArmyDude