monkey see
monkeytype
Security Policy <p>
We take the security and integrity of Monkeytype very seriously.
If
you have found a vulnerability, please report it <abbr>ASAP</abbr> so we can quickly
remediate the issue.
</p>
<p>Table of Contents</p>
<ul>
<li> How to Disclose a Vulnerability </li>
<li>Submission Guidelines</li>
</ul>
How to Disclose a Vulnerability
<p>
For vulnerabilities that impact the confidentiality, integrity, and
availability of Monkeytype services, please send your disclosure via
(1)
email,
or (2) private Discord chat to
Miodec.
For non-security related platform bugs, follow the bug submission guidelines
.
Include as much detail as possible to ensure reproducibility.
At a
minimum, vulnerability disclosures should include:
</p>
<ul>
<li>Vulnerability Description</li>
<li>Proof of Concept</li>
<li>Impact</li>
<li>Screenshots or Proof</li>
</ul>
Submission Guidelines
<p>
Do not engage in activities that might cause a denial of service
condition, create significant strains on critical resources, or
negatively impact users of the site outside of test accounts.
</p>