Reporting security issues
Security is a top priority for us at Parseur. We appreciate the efforts of security researchers and users to help us keep Parseur safe.
Security researchers
We are happy to work with security researchers to resolve security issues in a responsible manner. If you believe you have found a security issue in our product or service, we encourage you to notify us. We will investigate all legitimate reports and do our best to quickly fix the problem. You can contact us at [email protected].
The following security issues are currently not in scope (please don’t report them):
- Volumetric vulnerabilities (i.e. simply overwhelming our service with a high volume of requests).
- Reports of non-exploitable vulnerabilities.
- Reports indicating that our services do not fully align with "best practice" or other cosmetic recommendations.
If reported, we will ignore these reports and may block the reporter.
Security reports
We read all security reports sent to us and will do our best to respond to you in a timely manner.
We won't disclose issues until our investigation is complete and we have a fix in place.
Once the issue is resolved, we’ll post a security update on our changelog and, if you wish, a thanks and credit for the discovery.
Last updated on
