mirror of
https://github.com/bitwarden/android.git
synced 2026-03-21 22:00:42 -05:00
33 lines
1.8 KiB
Markdown
33 lines
1.8 KiB
Markdown
Bitwarden believes that working with security researchers across the globe is crucial to keeping our
|
|
users safe. If you believe you've found a security issue in our product or service, we encourage you
|
|
to please submit a report through our [HackerOne Program](https://hackerone.com/bitwarden/). We
|
|
welcome working with you to resolve the issue promptly. Thanks in advance!
|
|
|
|
# Disclosure Policy
|
|
|
|
- Let us know as soon as possible upon discovery of a potential security issue, and we'll make every
|
|
effort to quickly resolve the issue.
|
|
- Provide us a reasonable amount of time to resolve the issue before any disclosure to the public or
|
|
a third-party. We may publicly disclose the issue before resolving it, if appropriate.
|
|
- Make a good faith effort to avoid privacy violations, destruction of data, and interruption or
|
|
degradation of our service. Only interact with accounts you own or with explicit permission of the
|
|
account holder.
|
|
- If you would like to encrypt your report, please use the PGP key with long ID
|
|
`0xDE6887086F892325FEC04CC0D847525B6931381F` (available in the public keyserver pool).
|
|
|
|
While researching, we'd like to ask you to refrain from:
|
|
|
|
- Denial of service
|
|
- Spamming
|
|
- Social engineering (including phishing) of Bitwarden staff or contractors
|
|
- Any physical attempts against Bitwarden property or data centers
|
|
|
|
# We want to help you!
|
|
|
|
If you have something that you feel is close to exploitation, or if you'd like some information
|
|
regarding the internal API, or generally have any questions regarding the app that would help in
|
|
your efforts, please email us at https://bitwarden.com/contact and ask for that information. As
|
|
stated above, Bitwarden wants to help you find issues, and is more than willing to help.
|
|
|
|
Thank you for helping keep Bitwarden and our users safe!
|