Guidelines
We expect all clients and researchers:
- to make every effort to avoid privacy violations, degradation of the user experience, disruption of the production system and destruction of data during security testing;
- to conduct research only within the scope below;
- to use the identified communication channels to report information about vulnerabilities to us;
- to keep information about any vulnerabilities you have discovered confidential between yourself and NxtPort until the problem is resolved.
If you follow these guidelines when you report a problem to us, we commit:
- not to undertake or support any legal action in connection with your research.
- to work with you to understand and resolve the problem quickly (including initial confirmation of your report within 72 hours of submission).