Plotly

Vulnerability Disclosure Policy

At Plotly, we take the security of our systems and data seriously. We are committed to maintaining the privacy and security of our users and customers. This policy outlines our approach to receiving and handling vulnerability reports.

If you believe you have discovered a security vulnerability in our products or services, we encourage you to report it to us in a responsible manner. Please follow the guidelines below to help us address the issue effectively:

1. Contact Information: Please submit your findings to our security team via HackerOne or email us at [email protected].

2. Provide Details: Include as much information as possible about the vulnerability, including:

• A description of the vulnerability and its potential impact.
• Steps to reproduce the issue.
• Any relevant screenshots or proof of concept.
• Your contact information for follow-up.

3. Respect Privacy: Do not access or modify data without explicit permission. Avoid any actions that could harm our systems or data.

4. No Public Disclosure: Please do not publicly disclose the vulnerability until we have had a chance to investigate and address it.

We appreciate your efforts to help us maintain the security and integrity of our systems. Thank you for your contribution to our security.