Security & Responsible Disclosure
Report security issues
Please report vulnerabilities or security concerns to:
🛡️ security@elevatia.studio 📮 noc@elevatia.studio 🚫 abuse@elevatia.studio
For urgent active abuse (spam, malware, intrusion attempts), email abuse@elevatia.studio.
For general network operations, email noc@elevatia.studio.
What to include
- Affected service/host and a short description of impact.
- Reproduction steps or proof-of-concept (safe and minimal).
- Timestamps (UTC preferred), IPs, request IDs, relevant logs/headers.
- Preferred contact for follow-up.
Responsible disclosure guidelines
- Do not access or modify user data beyond what is necessary to demonstrate the issue.
- Do not perform destructive testing (e.g., DDoS) or large-scale scanning.
- Give us a reasonable opportunity to investigate and fix before public disclosure.
Coordinated response
We aim to acknowledge valid reports and proceed with mitigation after verification. Timelines can vary depending on severity and operational constraints.
No bounty promise
We appreciate help from the community, but we do not guarantee monetary rewards. We may provide acknowledgements if you request it and the report is valid.
PGP / encryption (optional)
If you want encrypted communication, you can publish a PGP key later and place its fingerprint here.
PGP fingerprint: (add your fingerprint here)