Responsible Disclosure
Last updated December 2021
At Unbabel Inc. we believe in the importance of securing our products and services and we appreciate the efforts and transparency of the security research community in reporting us vulnerabilities that may have slipped past us during the security testing activities of development and testing stages. Should you find a vulnerability in one of our systems, we would prefer to hear about it as soon as possible so that we can take measures to protect our customers, editor community and staff.
The RoE we require from you, as a security research/ethical hacker, are the following:
You can report vulnerabilities to us via security@unbabel.com. Please always include a description of the vulnerability itself, where exactly did you identify this vulnerability, evidence of the issue (if applicable; screenshots, videos and similar are encouraged), as well as steps explaining how to replicate the vulnerability (we cannot reward nor acknowledge vulnerabilities we cannot verify).
If you follow these guidelines when reporting an issue to us, we commit to:
This program is not intended for reporting complaints. It is also not intended for: