Report a Security

Guidelines to Reporting Vulnerabilities

Be sure to provide an appropriate level of detail including the steps needed to recreate the issue you have encountered, any code samples you wish to share, screen shots, and other details that would make it possible for JASK to identify and remedy the problem.

Do not publicly share the vulnerability and related details to the problem until JASK has released a fix.

Allow a reasonable timeframe for JASK to address the vulnerability, diagnose the problem, and issue a release fix. Specific timeframes for a fix will be estimated during the assessment of your submission.

JASK's Commitment to You

  • We will provide prompt acknowledgement of your report.
  • We will work directly with you to answer any questions.
  • You will be notified when the vulnerability has been resolved and a release vehicle determined.
  • We will publicly acknowledge your responsible disclosure unless you prefer to remain anonymous.

How to Report

We encourage you to follow our disclosure guidelines and not disclose your finding publicly until a fix or workaround has been provided by JASK.