We take the security of our systems seriously, and we welcome responsible security research. This page provide ways for security researchers to notify us of potential vulnerabilities within our platform.
We require that all researchers:
If you follow these guidelines when reporting an issue to us, we commit to:
Please note that we do not compensate individuals or organisations for identifying potential or confirmed security vulnerabilities. Any requests for monetary or other compensation will be deemed in violation of this Responsible Disclosure Program.
In the interest of the safety of our users, staff, the Internet at large and you as a security researcher, the following test types are excluded from scope:
In reporting a vulnerability, we do not want to receive:
If you believe you’ve found a security vulnerability in our platform please send it to us by emailing security@halaxy.com. Please include the following details with your report: