Responsible Disclosure
Updated
by
Chris Calmeyn
🔐 Responsible Disclosure Policy
At Fetcher, we take the security and privacy of our customers and users seriously. We welcome the responsible reporting of potential vulnerabilities to help us maintain a safe and secure platform.
If you believe you’ve discovered a security issue, we encourage you to report it to us privately and responsibly using the information below.
📬 How to Report a Vulnerability
To report a potential security vulnerability, please email us at: 📧 responsible-disclosure@fetcher.ai
In your message, please include (as applicable):
- A brief description of the vulnerability
- Steps to reproduce the issue
- Any supporting materials (e.g., screenshots, logs, proof-of-concept)
- Your contact information (optional)
🧭 What to Expect
- We will review your submission and determine its validity and potential impact.
- If the report is confirmed to be a legitimate security issue, we will work to remediate it appropriately.
- We may reach out for additional details or clarification as needed.
- We aim to keep lines of communication open throughout the process and appreciate your patience while we investigate and respond.
⚠️ Responsible Testing Guidelines
To ensure safe, ethical reporting, we ask that you:
- Do not exploit or misuse the vulnerability
- Do not access, modify, or delete any data that doesn’t belong to you
- Do not perform actions that degrade the performance or reliability of our systems
- Do not attempt social engineering, phishing, or physical attacks
- Do not publicly disclose the vulnerability before we have addressed it
🙏 Thank You
We appreciate your efforts to help us improve our security posture. Responsible disclosure helps protect our users and makes the entire Fetcher ecosystem safer.