Security
We take security seriously. If you discover a vulnerability or security issue, please report it responsibly.
Report a Vulnerability
Please send security reports to:
- Email: [email protected]
- PGP Key: pgp-key.txt
You can encrypt your report using our PGP public key for added privacy.
Policy Documents
- security.txt — Machine-readable security contact info
- pgp-key.txt — PGP public key for encrypted reports
- dnt-policy.txt — Do Not Track policy
Response
We aim to acknowledge reports within 48 hours and will work with you to understand and address the issue. We appreciate responsible disclosure and will credit researchers who report valid vulnerabilities (unless you prefer to remain anonymous).
Scope
This policy covers:
r01.noand all subdomains- Any services hosted under this domain