Security / Responsible disclosure
Security matters.
This public website is intentionally low-risk: it does not expose client systems, accept file uploads, or process payments.
Website security baseline
HTTPS is enforced in production. The application uses restrictive browser security headers, clickjacking protection, MIME-sniffing protection, a referrer policy, and a limited permissions policy.
Responsible disclosure
If you believe you found a security issue affecting this website, please report it privately to hello@nikunj-verma.ch. Include the affected URL, a concise reproduction path and the potential impact. Please do not access data that is not your own or perform disruptive testing.
Professional engagements
Client delivery is scoped separately and may include access controls, secrets management, least-privilege permissions, auditability and environment-specific security measures appropriate to the engagement.