SignalCLI Responsible Disclosure Policy

Commitment to Security

At SignalCLI, we value the contributions of security researchers and our user community in helping us maintain a secure platform. We actively encourage responsible reporting of any security vulnerabilities you might discover, ensuring we can swiftly address and rectify any issues.

Reporting Security Vulnerabilities

If you identify a potential security vulnerability, we kindly ask you to:

• Submit your detailed findings securely through the Contact Us page on our website.
• Clearly describe the vulnerability, including steps for reproduction, potential impact, and relevant technical details.

Responsible Disclosure Guidelines

When engaging in vulnerability research or reporting, please ensure:

• You do not publicly disclose the vulnerability until SignalCLI has addressed and fixed it.
• You refrain from activities that could harm SignalCLI or our users, such as unauthorized data access, modification, or deletion.
• Testing is performed exclusively on accounts or systems that you personally own or control.

Our Commitment to You

In recognition of your efforts and responsible disclosure, SignalCLI pledges to:

• Provide timely responses to your vulnerability reports.
• Work diligently and transparently to investigate and resolve any reported issues.
• Keep you informed throughout the vulnerability management process.
• Offer public acknowledgment for responsibly disclosed vulnerabilities, provided you consent to such acknowledgment.

Thank you for contributing to the security and integrity of SignalCLI. Your responsible actions help us protect our community.