We encourage anyone to report security vulnerabilities they find in our platform.
If you think you’ve found a security issue, please contact us through chat. We will work with you to fix it quickly.
Disclosure Policy
Let us know about the vulnerability, and we will respond within five business days.
Please give us reasonable time to fix the issue before sharing it publicly or with others. We aim to resolve critical issues within one week.
When testing, please respect privacy, avoid damaging data, and only test accounts you own or have permission to use.
What Not to Do
Please avoid:
Distributed Denial of Service (DDoS) attacks
Spamming
Phishing or social engineering targeting our employees or contractors
Attacks on our physical property or data centers
Updates
We may update these guidelines occasionally. The latest version will always be here.
How to Report a Vulnerability
When reporting, please include:
What type of vulnerability it is
How to reproduce it
Who could exploit it and what they might gain
Any helpful attachments like screenshots or logs
Bug Bounties / Rewards
We do not offer rewards, but we appreciate your help in keeping our platform safe!