Report Security Issues Securely
We take security seriously. If you discover a vulnerability in any of our services, please report it to us through this channel.
Policy Overview
1. Responsible Disclosure
We encourage researchers to share details directly with us while avoiding public disclosure.
2. Non-Retaliation
We won't pursue legal action against researchers acting in good faith according to this policy.
3. Acknowledgment
All valid reports will receive a detailed response within 24 hours.
4. Rewards
Severe issues qualify for our $5,000 bounty program (automatically processed via cryptocurrency).
How to Report
Step 1: Secure Channel
Use our secure form at /security-contact.html
with your preferred communication method (PGP, Tails, private Discord, etc).
Step 2: Detailed Report
Include: Vulnerability type, affected system, reproduction steps, and suggested fix.
Do not include: Sensitive user data or credentials.
Do not include: Sensitive user data or credentials.
Step 3: Verification & Fix
Our team will verify the issue and coordinate fixes before public disclosure.
You'll receive progress updates within 12-48 hours.