Security Policy

We welcome responsible disclosure of security vulnerabilities and abuse reports related to this website and its associated services.

Scope

This policy applies to security issues affecting this domain, its subdomains, and services operated directly by us.

How to report

Please submit your report using the contact information provided in our security.txt file and include, when possible:

• A clear description of the issue
• Affected URL(s) or system component(s)
• Steps to reproduce the issue
• Screenshots, logs, or proof of concept (if available)

Our commitment

• We aim to acknowledge valid reports within 72 hours.
• We will investigate and take appropriate remediation actions where necessary.
• We will keep reporters informed of significant progress when possible.

Guidelines

• Avoid violating user privacy or data confidentiality
• Do not exploit vulnerabilities beyond what is necessary to demonstrate the issue
• Do not perform denial-of-service or destructive testing
• Act in good faith at all times

Legal safe harbor

We consider activities conducted in accordance with this policy to be authorized and will not pursue legal action against individuals who follow these guidelines and report issues responsibly.

Thank you for helping improve the security of our services.