We are dedicated to maintaining the security and privacy of the DocStation services and customer data. We welcome security researchers from the community who want to help us improve our products and services.
If you discover a security vulnerability, please give us the chance to fix it by emailing us at firstname.lastname@example.org. Publicly disclosing a security vulnerability without informing us first puts the rest of the community at risk. When you notify us of a potential problem, we will work with you to make sure we understand the scope and cause of the issue.
Thank you for your work and interest in making the community safer and more secure!
DocStation awards security researchers cash and prizes for reporting vulnerabilities. Please email email@example.com to report an issue.
If you would like to be eligible for a bounty, please read this carefully.
Only the following services are in-scope:
Please do not test or report issues with services not listed here.
The following types of reports/attacks are out of scope. Do not attempt them:
Social engineering attacks, including but not limited to:
If you choose to email us, encrypting your email is not required. Should you deem it necessary, you can find our encrypted contact details on Keybase (for PGP or Keybase itself).