Security
A plain-language summary of the current security posture reflected in the repo and public pilot flow.
Current approach
Gridsnark uses hosted application infrastructure and server-enforced room and player access rules to protect game data updates. Client-side checks are not the only line of defense.
Access model
Room access is link or code based. Anyone with the join link or room code can attempt to join a room while it is open, so hosts should share access intentionally.
Best fit
The app is built for meeting-game coordination, not for storing secrets or high-sensitivity business data. Use ordinary judgment about what you put into player names, buzzwords, and room content.
Reporting issues
If you find a security issue, report it privately to the operator or use the contact page instead of posting exploit details in a room or public channel.