{"id":30116,"date":"2025-09-04T18:30:44","date_gmt":"2025-09-04T16:30:44","guid":{"rendered":"https:\/\/www.soundreef.com\/?page_id=30116"},"modified":"2025-09-04T18:36:07","modified_gmt":"2025-09-04T16:36:07","slug":"security-reporting-guidelines","status":"publish","type":"page","link":"https:\/\/www.soundreef.com\/en\/security-reporting\/","title":{"rendered":"Security Reporting Guidelines"},"content":{"rendered":"<h2>Introduction<\/h2>\n<p>At Soundreef, we take the security of our systems and our users&#8217; data very seriously.<br \/>\nWe value the contributions of security researchers who help us identify and mitigate vulnerabilities in a responsible manner.<\/p>\n<p>This policy outlines how to report security issues to us, what you can expect in return, and our guidelines for responsible disclosure.<\/p>\n<h2>Reporting a Vulnerability<\/h2>\n<p>If you discover a security vulnerability in any Soundreef service, please contact us at:<\/p>\n<p><a href=\"mailto:security@soundreef.com\">security@soundreef.com<\/a><\/p>\n<p>When reporting, please include:<\/p>\n<ul>\n<li>A clear description of the issue.<\/li>\n<li>Steps to reproduce the vulnerability.<\/li>\n<li>Any potential impact or risk.<\/li>\n<li>(Optional) Suggestions for remediation.<\/li>\n<\/ul>\n<h2>Our Commitment<\/h2>\n<ul>\n<li>We will acknowledge receipt of your report within 48 hours.<\/li>\n<li>We will provide regular updates as we investigate and fix the issue.<\/li>\n<li>We will notify you once the vulnerability has been resolved.<\/li>\n<li>We will not take legal action against researchers who adhere to this policy and act in good faith.<\/li>\n<\/ul>\n<h2>Recognition<\/h2>\n<p>At this time, we do not offer monetary rewards for vulnerability reports.<br \/>\nHowever, we do offer recognition in the following ways:<\/p>\n<ul>\n<li>Public acknowledgment in our Security Hall of Fame (with your consent).<\/li>\n<li>The opportunity to publish a technical write-up of your findings once the issue has been resolved (see &#8220;Publication of Write-ups&#8221;).<\/li>\n<li>A formal letter of appreciation upon request.<\/li>\n<\/ul>\n<h2>Responsible Disclosure Guidelines<\/h2>\n<p>To protect our users and systems, we ask that you:<\/p>\n<ul>\n<li>Do not exploit the vulnerability beyond what is necessary to demonstrate it.<\/li>\n<li>Do not access, modify, or delete data that does not belong to you.<\/li>\n<li>Do not publicly disclose details of the vulnerability until we have confirmed it has been resolved (see &#8220;Publication of Write-ups&#8221;).<\/li>\n<li>Make a good-faith effort to avoid privacy violations, disruption of service, or degradation of our systems.<\/li>\n<\/ul>\n<h2>Publication of Write-ups<\/h2>\n<p>We support and encourage the publication of technical write-ups by security researchers who report vulnerabilities to us.<br \/>\nTo protect our users, we ask that such publications follow these guidelines:<\/p>\n<ul>\n<li>Write-ups may only be published after the vulnerability has been fully resolved in production.<\/li>\n<li>We may request a short embargo period (e.g. 30\u201390 days after the fix) to ensure stability and protection for our users.<\/li>\n<li>We kindly ask that researchers share a draft of their write-up with us prior to publication, so we can verify that no sensitive information (such as user data, credentials, or configuration secrets) is unintentionally disclosed.<\/li>\n<li>We will gladly acknowledge and link to the write-up in our own Security Advisories or Hall of Fame, unless the researcher prefers to remain anonymous.<\/li>\n<\/ul>\n<p>By adhering to these principles, researchers can responsibly share their work, contribute to the security community, and help improve Soundreef\u2019s overall security posture.<\/p>\n<h2>Out of Scope<\/h2>\n<p>The following are generally not considered in scope for this policy:<\/p>\n<ul>\n<li>Denial of Service (DoS\/DDoS) attacks.<\/li>\n<li>Spam or social engineering.<\/li>\n<li>Vulnerabilities in third-party services not operated by Soundreef.<\/li>\n<li>Reports that are not reproducible.<\/li>\n<\/ul>\n<h2>Thank You<\/h2>\n<p>We greatly appreciate your contributions in helping us maintain a secure environment for our users.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Introduction At Soundreef, we take the security of our systems and our users&#8217; data very seriously. We value the contributions of security researchers who help us identify and mitigate vulnerabilities in a responsible manner. This policy outlines how to report security issues to us, what you can expect in return, and our guidelines for responsible<\/p>\n","protected":false},"author":9,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v18.0 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Security Reporting Guidelines - Soundreef<\/title>\n<meta name=\"robots\" content=\"noindex, nofollow\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Security Reporting Guidelines - Soundreef\" \/>\n<meta property=\"og:description\" content=\"Introduction At Soundreef, we take the security of our systems and our users&#8217; data very seriously. We value the contributions of security researchers who help us identify and mitigate vulnerabilities in a responsible manner. This policy outlines how to report security issues to us, what you can expect in return, and our guidelines for responsible\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.soundreef.com\/en\/security-reporting\/\" \/>\n<meta property=\"og:site_name\" content=\"Soundreef\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/soundreef\" \/>\n<meta property=\"article:modified_time\" content=\"2025-09-04T16:36:07+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary\" \/>\n<meta name=\"twitter:site\" content=\"@soundreef\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.soundreef.com\/en\/#website\",\"url\":\"https:\/\/www.soundreef.com\/en\/\",\"name\":\"Soundreef\",\"description\":\"Semplice, Veloce, Trasparente.\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.soundreef.com\/en\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.soundreef.com\/en\/security-reporting\/#webpage\",\"url\":\"https:\/\/www.soundreef.com\/en\/security-reporting\/\",\"name\":\"Security Reporting Guidelines - Soundreef\",\"isPartOf\":{\"@id\":\"https:\/\/www.soundreef.com\/en\/#website\"},\"datePublished\":\"2025-09-04T16:30:44+00:00\",\"dateModified\":\"2025-09-04T16:36:07+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.soundreef.com\/en\/security-reporting\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.soundreef.com\/en\/security-reporting\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.soundreef.com\/en\/security-reporting\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.soundreef.com\/en\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Security Reporting Guidelines\"}]}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Security Reporting Guidelines - Soundreef","robots":{"index":"noindex","follow":"nofollow"},"og_locale":"en_US","og_type":"article","og_title":"Security Reporting Guidelines - Soundreef","og_description":"Introduction At Soundreef, we take the security of our systems and our users&#8217; data very seriously. We value the contributions of security researchers who help us identify and mitigate vulnerabilities in a responsible manner. This policy outlines how to report security issues to us, what you can expect in return, and our guidelines for responsible","og_url":"https:\/\/www.soundreef.com\/en\/security-reporting\/","og_site_name":"Soundreef","article_publisher":"https:\/\/www.facebook.com\/soundreef","article_modified_time":"2025-09-04T16:36:07+00:00","twitter_card":"summary","twitter_site":"@soundreef","twitter_misc":{"Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebSite","@id":"https:\/\/www.soundreef.com\/en\/#website","url":"https:\/\/www.soundreef.com\/en\/","name":"Soundreef","description":"Semplice, Veloce, Trasparente.","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.soundreef.com\/en\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.soundreef.com\/en\/security-reporting\/#webpage","url":"https:\/\/www.soundreef.com\/en\/security-reporting\/","name":"Security Reporting Guidelines - Soundreef","isPartOf":{"@id":"https:\/\/www.soundreef.com\/en\/#website"},"datePublished":"2025-09-04T16:30:44+00:00","dateModified":"2025-09-04T16:36:07+00:00","breadcrumb":{"@id":"https:\/\/www.soundreef.com\/en\/security-reporting\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.soundreef.com\/en\/security-reporting\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.soundreef.com\/en\/security-reporting\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.soundreef.com\/en\/"},{"@type":"ListItem","position":2,"name":"Security Reporting Guidelines"}]}]}},"_links":{"self":[{"href":"https:\/\/www.soundreef.com\/en\/wp-json\/wp\/v2\/pages\/30116"}],"collection":[{"href":"https:\/\/www.soundreef.com\/en\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.soundreef.com\/en\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.soundreef.com\/en\/wp-json\/wp\/v2\/users\/9"}],"replies":[{"embeddable":true,"href":"https:\/\/www.soundreef.com\/en\/wp-json\/wp\/v2\/comments?post=30116"}],"version-history":[{"count":3,"href":"https:\/\/www.soundreef.com\/en\/wp-json\/wp\/v2\/pages\/30116\/revisions"}],"predecessor-version":[{"id":30120,"href":"https:\/\/www.soundreef.com\/en\/wp-json\/wp\/v2\/pages\/30116\/revisions\/30120"}],"wp:attachment":[{"href":"https:\/\/www.soundreef.com\/en\/wp-json\/wp\/v2\/media?parent=30116"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}