At Numbers Protocol, we take security very seriously and are committed to protecting our services and users. We welcome the responsible disclosure of security vulnerabilities from the community.
If you discover a security vulnerability related to any of Numbers Protocol’s services or websites, please follow the instructions below to report it using this repository.
To report a vulnerability:
- Go to the Security tab of this repository.
- Select Report a vulnerability.
- Provide detailed information including:
- A description of the issue and its potential impact.
- Steps to reproduce the vulnerability.
- Any available proof-of-concept or screenshots.
Please refrain from publicly disclosing the vulnerability until we have had the opportunity to investigate and address it.
- You will receive an acknowledgment of your submission within 72 hours via GitHub.
- Our security team will investigate the report and provide updates as we work to resolve the issue.
- We aim to resolve confirmed vulnerabilities in a timely manner based on the severity and complexity of the issue.
If the vulnerability is accepted and validated, we may credit your contribution publicly, with your permission, in our security advisories or release notes.
Thank you for helping us maintain a secure environment for Numbers Protocol services.