Informing Us About Security Issues
To ensure secure handling of security reports, we strongly encourage you to follow the procedures outlined at securitytxt.org. This protocol is designed to help you securely and privately report vulnerabilities.
Why Avoid Direct Plaintext Email?
Submitting security reports via direct plaintext email is not recommended because it lacks the encryption needed to protect sensitive information. Plaintext emails are unencrypted and can be intercepted, exposing confidential details about vulnerabilities before they are addressed. This could lead to unnecessary exposure, putting both our systems and users at risk. Additionally, using plaintext email makes it difficult to control who has access to the information, and it can easily be forwarded or viewed by unauthorized parties. For these reasons, we strongly encourage the use of secure communication methods like encrypted email or the reporting tools specified in our security.txt file.
By following these guidelines, you help ensure that your report remains confidential, reducing the risk of exposure and enabling us to act swiftly and responsibly. Thank you for helping us maintain a secure environment!
Subscribe to our mailing list
Want to keep up-to-date with the latest Token2 news, projects and events? Join our mailing list!