Security

Help keep Tabschool safe for the community by disclosing security issues to us

We take security seriously at Tabschool, and we’re committed to protecting our community. If you are a security researcher or expert, and believe you’ve identified security-related issues with Tabschool’s website or apps, we would appreciate you disclosing it to us responsibly.

Our team is committed to addressing all security issues in a responsible and timely manner, and we ask the security community to give us the opportunity to do so before disclosing them publicly. Please submit a detailed description of the issue to us, along with the steps to reproduce it. We trust the security community to make every effort to protect our users’ data and privacy.

Disclosure Policy

  • Let us know as soon as possible upon discovery of a potential security issue, and we'll make every effort to quickly resolve the issue.
  • Provide us a reasonable amount of time to resolve the issue before any disclosure to the public or a third-party.
  • Make a good faith effort to avoid privacy violations, destruction of data, and interruption or degradation of our service. Only interact with accounts you own or with explicit permission of the account holder.

Scope

The scope of issues is limited to technical vulnerabilities in the Tabschool website or mobile apps. Please do not attempt to compromise the safety or privacy of our users, or the availability of Tabschool through DoS attacks or spam. We also request you not to use vulnerability testing tools that generate a significant volume of traffic.

Bounty Program

We do not currently have a monetary bug bounty programme, but any report that results in a change will at minimum receive Hall of Fame recognition. We would also be more than happy to provide a certificate of acknowledgement.

Report a Bug