Responsible Disclosure
We take security seriously. If you believe you have found a vulnerability in our website or systems, please tell us so we can investigate and fix it.
Security contact
Report suspected security issues to info@invisocore.io. Please include enough detail for us to reproduce and assess the issue.
Email security report1. Scope
This page covers responsible disclosure for InvisoCore Technologies public websites and systems we operate. Out-of-scope reports may include issues in third-party services we do not control, social engineering without technical vulnerability, or denial-of-service testing against production without prior written permission.
2. How to Report
- Email info@invisocore.io with a clear subject line
- Describe the vulnerability, affected URL or component, and steps to reproduce
- Include impact assessment if known (e.g. data exposure, privilege escalation)
- Do not include unnecessary personal data in proof-of-concept material
3. Good Faith Guidelines
- Act in good faith to avoid privacy violations and service disruption
- Do not exploit a vulnerability beyond what is needed to demonstrate it
- Do not access, modify, or delete data that is not your own
- Allow us reasonable time to investigate and remediate before public disclosure
4. Our Response
We aim to acknowledge valid reports and keep reporters informed as we investigate. Remediation timelines depend on severity and complexity. We appreciate researchers who help us protect our customers and systems.
5. Legal
We will not pursue legal action against researchers who comply with these guidelines, report in good faith, and do not cause harm beyond what is necessary to demonstrate an issue. This statement does not authorize testing that violates applicable law or third-party rights.