Trust Center

Reporting a vulnerability

Found something that looks like a security issue? Here's exactly how to get it in front of our team.

Send reports to

security@eiferone.com

What to include

  • A description of the vulnerability and its potential impact
  • Step-by-step instructions to reproduce the issue
  • The URL, endpoint, or system where the issue occurs
  • Any proof-of-concept code, screenshots, or request/response data that supports your finding
  • Your preferred contact method for follow-up

What happens next

  1. We acknowledge receipt of your report within 2 business days.
  2. Our team validates and triages the report, and may reach out with clarifying questions.
  3. We work on remediation and keep you informed of progress at reasonable intervals.
  4. Once resolved, we'll coordinate with you on disclosure timing, if applicable.

Our commitment to you

Reports submitted in good faith and in line with our Responsible Disclosure Policy are covered by our safe harbor commitments. We do not currently operate a paid bug bounty program, but we're happy to publicly credit researchers who wish to be acknowledged.