Security Policy

Reporting Security Vulnerabilities

I take the security of zalt.me seriously. If you discover a security vulnerability, I appreciate your help in disclosing it to me in a responsible manner. Your efforts help keep this website and its users safe.

How to Report

Please report security vulnerabilities by emailing:

[email protected]

Please include:

• A clear description of the vulnerability
• Steps to reproduce the issue
• The potential impact of the vulnerability
• Any suggested fixes or mitigations (if available)

What to Expect

• I will acknowledge receipt of your report within 48 hours
• I will provide an initial assessment within 7 days
• I will keep you informed of the progress toward resolving the issue
• I will notify you when the vulnerability has been resolved

Responsible Disclosure

I ask that you please:

• Give me reasonable time to fix the issue before public disclosure
• Act in good faith and avoid accessing or modifying data that does not belong to you
• Not perform any actions that could harm the site or its users
• Not disclose the vulnerability publicly until it has been resolved

Recognition

With your permission, I would like to recognize your contribution on my Security Acknowledgments page.

Bug Bounty Program

I do not operate a bug bounty program and do not offer monetary rewards for vulnerability reports. I appreciate responsible disclosure and will only acknowledge valid security findings.

Out of Scope

The following are generally considered out of scope:

• Social engineering attacks
• Physical security issues
• Denial of service attacks
• Issues requiring physical access to a device
• Spam or content issues

Related Policies

For information about how I collect, use, and protect your personal data, please see my Privacy Policy.