Contact: security@fora.day
Expires: 2025-12-31T23:59:59.000Z
Encryption: https://fora.day/.well-known/pgp-key.txt
Preferred-Languages: en
Canonical: https://fora.day/.well-known/security.txt
Policy: https://fora.day/security-policy

# Security Policy
# We take security seriously and appreciate responsible disclosure.
# Please report security vulnerabilities to security@fora.day
# 
# What to include in your report:
# - Clear description of the vulnerability
# - Steps to reproduce the issue
# - Potential impact assessment
# - Any suggested mitigation strategies
#
# Response timeline:
# - Initial response: Within 24 hours
# - Status update: Within 72 hours
# - Resolution target: 30 days for critical issues
#
# Bug Bounty: We currently do not offer monetary rewards but will acknowledge
# security researchers who report valid vulnerabilities in our security hall of fame.