We are happy to announce the X-Road® bug bounty program! We've done our best to clean most of our known issues and now would like to request your help to spot the ones we missed! The following components of available in the X-Road GitHub repository are in-scope for this bug bounty program:
...
As an example:
We are very interested in maintaining a high level of trust and security in the communication that takes place between two Security Servers. If you find any way of breaking that trust by using a man in the middle attack or any other means, please let us know!
| Info |
|---|
Vulnerability reports are submitted to the X-Road Service Desk using the Bug Bounty request type. In order to access the X-Road Service Desk, sign up for an account. |
Out of Scope
The following vulnerabilities are out of scope:
...