Please do not file a public ticket mentioning the vulnerability or issue.
To privately report security issues or vulnerabilities send your report to security@bastionzero.com (not for support). A report should include:
- a summary of the issue,
- the steps needed to reproduce the issue,
- the potential security impact and, if found, any proposed mitigation.
We do not currently offer bug bounties.