Responsible Disclosure
Guidelines for reporting security vulnerabilities to Infodeck.
Infodeck is committed to ensuring the security and privacy of its customers by protecting our information from unwarranted disclosure.
We value input from security researchers and believe that responsible disclosure of vulnerabilities helps protect our users' data and privacy. If you discover a security issue, we encourage you to report it following these guidelines.
1 Reporting a Vulnerability
When submitting a vulnerability report, please include the following information:
Vulnerability Description
A clear and detailed description of the vulnerability and its potential impact.
Proof of Concept
Step-by-step instructions to reproduce the issue, including any relevant screenshots or videos.
Technical Details (Optional)
Trace dumps, HTTP requests/responses, or any other technical artifacts that demonstrate the vulnerability.
2 What We Ask of Researchers
- Act in good faith and avoid accessing or modifying data that doesn't belong to you
- Do not disrupt or degrade our services (no DoS attacks)
- Give us reasonable time to investigate and address the issue before public disclosure
- Do not access, modify, or delete other users' data
- Only test against accounts you own or have explicit permission to test
3 Program Scope
Important Notice
Unfortunately, we do not have a bug bounty program nor offer any reward scheme such as swag or merchandise. We are not currently looking to engage in bug bounty or similar programs.
Report a Vulnerability
Please send your findings to our security team:
Security Team
security@infodeck.ioWe aim to respond to all reports within 72 hours. For more information about our security practices, visit our Security & Privacy page.