ext0 runs entirely in the browser. The only outbound network request is user-triggered (the Export Element tool's "Open in CodePen" action posts the selected element's HTML/CSS to codepen.io). Even so, if you find a security or privacy issue, we'd like to know.

Please email syahputrawahyu61@gmail.com rather than opening a public GitHub issue. Include:

• A description of the issue and its impact.
• Steps to reproduce or a proof-of-concept, if possible.
• The affected version (extension version or commit SHA).

We'll acknowledge your report within a few business days and keep you in the loop on the fix.

Only the latest release of @ext0/extension (and the current main branch) receives security fixes.