Vulnerability Disclosure Policy
$ cat /pub/disclosure_policy
At ve1ve2, we recognize the immense value of the security community. If you discover a vulnerability in our infrastructure, we want to know so we can fix it.
Rules of Engagement
- Do: Report vulnerabilities via PGP encrypted email to
soc@ve1ve2.com. - Do: Allow us reasonable time to patch before public disclosure.
- Do NOT: Perform DDoS attacks, social engineering, or access user data.
$ cat /var/log/hall_of_fame
We would like to thank the following researchers for helping us secure our systems:
| Date | Researcher | Bug Type | Status |
|---|---|---|---|
| – | – | – | – |
| 2026 | Awaiting First Input… | – | Open |
Reward?
Currently, we operate a Recognition-Only program (Hall of Fame + Recommendation Letter). We do not offer monetary bounties at this stage, but we offer our eternal respect and a spot on this list.