External Program
Submit bugs directly to this organization
Pocket's HackerOne bounty program has been discontinued.
If you believe you have discovered a security vulnerability in Pocket, please follow Mozilla's bug reporting process documented at https://www.mozilla.org/en-US/security/bug-bounty/faq-webapp/#bug-reporting. Existing HackerOne reports have been copied into Bugzilla. If you have an existing HackerOne report and would like to check in or monitor progress on your findings please reach out with your Bugzilla email address and we will add you to the relevant tracking bug(s).