Responsible Disclosure

Introduction

If you have found a potential security vulnerability in one of Maholla’s systems or domains, we request you to take part in our responsible disclosure process as described below. We would like to co-operate with you to take the necessary measures and rectify the vulnerability. If you have landed here from a Google search for “Responsible Disclosure” we remind you that the purpose of this policy is for the case where you find a vulnerability by accident.

What we ask of you

What you cannot do

What you can expect

More information

This is not an invitation to actively start scanning or hack us. If you happen to find something (by accident), we would like to know as soon as possible on security [at] maholla.com

🔗 Any sensitive information needing to be securely communicated can be cryptographically sent using our PGP key.