PEX adheres to strict PCI DSS security standards and coding practices. All code is reviewed by our highly trained software engineers. In addition all 3rd party dependencies are analyzed. We also perform static code analysis and penetration testing on our systems.
Despite our best efforts vulnerabilities may be discovered from time to time. If you suspect that there is a vulnerability in any of our software please contact us at github@pexcard.com
We take the security of our software very seriously. Fixing suspected vulnerabilities is prioritized above all other projects. We will respond to any credible vulnerability reports within 3 business days.