To report a vulnerability, send an email to firstname.lastname@example.org
We absolutely do. If you see something that you think represents a security vulnerability or issue, please email email@example.com. We appreciate insights and suggestions, but do not provide financial compensation.
Absolutely not. Rather than support ad hoc bug reports via a bounty program, we work with a range of external vendors - choosing who to engage with, the financial rewards of engagement and ensuring that the work of these specialists doesn't disrupt our paying clients.