Opalyn

Reporting

Include a summary, reproduction steps, affected account or tenant if relevant, impact, and safe screenshots or logs. Do not access or exfiltrate data that does not belong to you.

Security model

Opalyn uses Firebase authentication, backend tenant membership checks, role permissions, tenant-scoped database queries, server-side entitlement enforcement, audit logs, and HTTPS-only online communication.