Security
Help us keep Shopingly secure.
We welcome responsible, good-faith reports of vulnerabilities affecting Shopingly.
Report a vulnerability
Email us at support@shopingly.com with the subject line “Security disclosure”. Please do not share vulnerabilities publicly before we have had a reasonable opportunity to investigate and resolve them.
Email a security disclosureWhat to include
- Clear steps to reproduce the issue
- The affected URL or service
- The potential impact
Our commitments
- We will acknowledge your report within 3 working days.
- We will keep you informed as we investigate and resolve it.
- We will not take legal action for good-faith security research that follows this policy.
In scope
This policy covers shopingly.com and app.shopingly.com.
Out of scope
- Denial-of-service testing
- Social engineering
- Physical attacks
- Automated scanner reports without a proven issue
Recognition
We do not currently offer a bug bounty. With your permission, we would be pleased to credit you for a valid report that helps us improve Shopingly.