Chattermill Vulnerability Disclosure Policy

Introduction

Maintaining the security of our applications and networks is a high priority for Chattermill. If you have information related to security vulnerabilities of Chattermill products and services, please submit a report in accordance with the guidelines below. Thank you for helping keep Chattermill and our customers safe!

Safe Harbor

If you follow the guidelines in this Vulnerability Disclosure Policy when conducting security research and reporting an issue to us, we commit not to pursue or support any legal action related to your research and work with you to understand and resolve the issue quickly (including an initial confirmation of your report within 72 hours of submission).

In Scope

Chattermill's Vulnerability Disclosure Policy applies to security vulnerabilities discovered in any web services or other public facing software running on *.chattermill.io or *.chattermill.xyz domains.

Process

Our security team rapidly investigates all reported security issues. If you believe you’ve discovered a bug in Chattermill’s security, please get in touch at security@chattermill.io with information about the vulnerability and detailed steps on how to replicate it. The Chattermill security team will review your submission and respond within 72 hours. You must give us 30 days (starting from the day of a vulnerability submission) to address the security issue you raise before making any part of it public.

Latest Research

Netflix header image
Online survey

Reviews are a powerful marketing tool and a source of unstructured feedback. The more you collect, the easier it is to quickly identify and solve product issues and uncover patterns.

Man shaves