Keeping our customer's data safe is our #1 priority. We take vulnerability disclosure seriously and work hard to protect our customer and their data.
SoWork believes that no technology is perfect and working with skilled security researchers across the globe is crucial in identifying weaknesses in any technology.
If you believe you've found a security issue in our product or service, we encourage you to notify us. We welcome working with you to resolve the issue promptly.
If you would like to report a vulnerability or have any security concerns, please contact firstname.lastname@example.org
Include proof of concept, a list of tools used (including versions), and the output of the tools. We take all disclosures very seriously. Once disclosures are received, we rapidly verify each vulnerability before taking the necessary steps to fix it.
While researching, we'd like to ask you to refrain from:
Any activities conducted in a manner consistent with this policy will be considered authorized conduct and we will not initiate legal action against you. If legal action is initiated by a third party against you in connection with activities conducted under this policy, we will take steps to make it known that your actions were conducted in compliance with this policy.
Thank you for helping keep SoWork and our users safe!