Coordinated vulnerability disclosure policy
If you discover a potential security issue, please report it responsibly so we can investigate and resolve it quickly.
How to report
Send a detailed report to our security contact.
Please include
- Affected URL or page.
- Steps to reproduce.
- Expected and actual behavior.
- Potential impact and screenshots if available.
Our commitment
Good-faith reports are welcome.
- We acknowledge receipt as quickly as possible.
- We investigate and prioritize based on severity and risk.
- We may request follow-up details to verify remediation.
- Please avoid testing that could disrupt services or access other users' data.