Please do not report security vulnerabilities through public GitHub issues.

To report a security vulnerability, please open a GitHub Security Advisory.

Include as much of the following information as possible:

• Type of issue (e.g. privilege escalation, path traversal, code injection)
• Full path of the source file(s) related to the issue
• Location of the affected source code (tag/branch/commit or direct URL)
• Step-by-step instructions to reproduce the issue
• Proof-of-concept or exploit code (if possible)
• Impact of the issue, including how an attacker might exploit it

You can expect an acknowledgement within 48 hours and a more detailed response within 5 business days.

macIconChanger requires administrator privileges to replace application icons stored in system directories. Please only download releases from the official GitHub Releases page or via the official Homebrew tap.