Our Commitment
We have developed our products based on the “Secure By Design” philosophy. The security of our products and services is a priority.
We place great importance on vulnerability reports from our customers, partners, and anyone else who wishes to help improve the security of our solutions.
If you believe you have identified a vulnerability affecting one of our products or services, we encourage you to report it to us so that our team can analyze it and take appropriate action.
How to Report a Vulnerability
To submit a security report, contact our security team at the following address preferably with PGP encryption
- Fingerprint: 1CE503DC709F14A08659C81F9AB9B47985629BBC
- Public Key File
To help us analyze your report, please include the following information:
- Contact name
- Name of the affected product;
- Version of the product used;
- Detailed description of the vulnerability;
- Steps to reproduce the issue;
- Identified potential impact;
- Useful technical details (screenshots, logs, proof-of-concept).
- the Common Vulnerability Scoring System Version 3.0 Calculator
Responsible Disclosure Guidelines
We ask anyone who discovers a vulnerability to:
- not exploit the vulnerability beyond the purpose of demonstration;
- not access data that does not belong to them;
- not disrupt a service;
- wait to engage in dialogue before disclosing the vulnerability.
Processing Your Report
Every report we receive is recorded, analyzed, and evaluated by our security team. Once the report has been assessed, we determine the necessary actions: correction, risk mitigation measures, or closure of the report.
Additional Information
Security reports are treated confidentially and are used solely to improve the security of our products and services.
Thank you to everyone who helps strengthen the security of our solutions.