Contact: mailto:security@stackr.work Contact: mailto:hello@stackr.work Expires: 2027-05-23T00:00:00.000Z Preferred-Languages: en Canonical: https://stackr.work/.well-known/security.txt Policy: https://stackr.work/security Acknowledgments: https://stackr.work/security#acknowledgments # Stackr security disclosure # # If you have identified a vulnerability, please email us before any public # disclosure. We commit to: # - Acknowledge receipt within 2 business days # - Provide an initial assessment within 7 days # - Coordinate disclosure on a timeline that balances user safety with # transparency (typically 90 days, shorter for actively-exploited issues) # # Please do NOT: # - Run intrusive scans against production # - Access, modify, or delete customer data # - Engage in social engineering of Stackr employees or customers # # We do not yet operate a paid bug bounty. We will publicly credit # researchers who responsibly disclose vulnerabilities, with their consent.