Responsible disclosure

Report a vulnerability

If you believe you have discovered a security vulnerability in Clarion Labs systems, email security@clarionlabs.tech from an address you monitor. Please include a concise summary, affected domains or endpoints, steps to reproduce (where safe), and your assessment of impact. We do not operate a public bug-bounty program yet, but we appreciate coordinated disclosure.

What we ask

  • Give us a reasonable window to investigate and remediate before any public discussion.
  • Avoid experiments that could disrupt other users, leak their data, or violate the law.
  • Do not scrape, exfiltrate, or retain personal data beyond what is needed to verify the issue.

Follow-up

We aim to acknowledge serious reports within several business days (US time). Severity and complexity determine fix timelines. Use support@clarionlabs.tech for general account issues; keep vulnerability details on the security address so they reach the right responders.

Privacy policy · ← Back to home