If you discover a security vulnerability in OpenLiDARViewer, please report it privately rather than opening a public issue. Email info@aurtech.mx with:

• a description of the issue,
• steps to reproduce it, and
• the affected version or commit.

You can expect an acknowledgement and, where applicable, a fix or mitigation plan.

OpenLiDARViewer is designed around local-first inspection. Scan files are read, parsed, and rendered entirely in the browser — there is no server to upload them to. The security of your data also depends on how and where you choose to deploy and run the app.

OpenLiDARViewer is an R&D-stage project. Security fixes are applied to the latest version on the default branch.