Our bug bounty program is currently not active. You are more than welcome to report vulnerabilities to [email protected], but we are not able to provide a reward at this time.