Security

Elixidra welcomes responsible security reports. We do not currently operate a paid bug bounty program unless explicitly announced.

Testing guidelines

• Perform safe, non-destructive testing only.
• Do not perform denial-of-service (DoS/DDoS) activity.
• Do not use social engineering techniques.
• Do not send spam.
• Do not attempt brute-force attacks.
• Do not access, modify, delete, or exfiltrate user data.

What to include in your report

• Affected URL, product, or version
• Clear reproduction steps
• Security impact
• Evidence (screenshots, logs, or proof of concept)
• Suggested remediation

Contact

Please send reports to contact@elixidra.com.