A clear, predictable process for reporting vulnerabilities, security findings, abuse, and platform weaknesses — and what happens after you do.
Send what you found to security@amenxlabs.com — a vulnerability, a security weakness, an abuse pattern, or platform misuse. Include enough detail for us to reproduce it.
We acknowledge your report within three business days and let you know we are looking into it.
We assess the severity and impact, reproduce the issue, and decide on a fix. We may ask you for more detail.
We ship a fix, verify it, and confirm with you that the issue is resolved.
We tell you it is done and, with your permission, credit you for the report.
Acknowledgement within 3 business days. An initial assessment within 10. Critical issues are prioritized immediately.
We keep one thread per report and update you at each stage. If we go quiet, it is safe to follow up.
Report in good faith, avoid harming users or data, and give us time to fix the issue before discussing it publicly.
For technical vulnerabilities, see the full vulnerability disclosure policy, which includes our safe-harbor statement and scope. To report misconduct rather than a security flaw, use the whistleblower center.