Emberex

Security reporting

Report concerns privately.

If you believe you have found a vulnerability in this website or an Emberex product, contact the team without publishing exploit details.

How to report

Use the security contact form and include the affected page or component, the behaviour you observed, reproduction steps and the potential impact.

Do not include passwords, access tokens, private keys, payment information, live customer review data or other unnecessary personal information.

What to expect

We aim to acknowledge a credible report within two UK working days. We will investigate, keep you informed when practical and address verified issues according to their risk.

Safe research

Do not disrupt service, access another person’s account or data, use social engineering, send automated high-volume traffic, or retain information beyond what is needed to describe the issue. This page does not authorise testing of Etsy, Shopify, Railway, Resend or any other third-party service.

Current integration status

Commercial Etsy API access is pending.

Emberex does not make Etsy API requests and will not enable its Etsy connection before Etsy approval.

The term 'Etsy' is a trademark of Etsy, Inc. This application uses the Etsy API but is not endorsed or certified by Etsy, Inc.