Security

If you believe you have found a security issue in a Micrantha system, report it here.

Send vulnerability reports to security@micrantha.com with Security Report in the subject line.

Include the affected URL, product, component, impact, reproduction steps, proof-of-concept details, and any logs or screenshots that help us validate the issue quickly.

Scope

This disclosure channel covers public Micrantha-owned websites, applications, and services. If you are unsure whether a system is in scope, include the hostname or repository reference in your report and we will clarify.

Good-Faith Research

We welcome reports from researchers acting in good faith to help us improve the security of our systems.

Please avoid:

accessing, modifying, or destroying other people's data
disrupting service availability or degrading production systems
social engineering, phishing, spam, or physical attacks
using privacy-invasive or destructive proof-of-concept techniques

What to Expect

We will review reports, validate issues, and prioritize remediation based on severity and impact. If you want coordinated disclosure, note that in your report and include your preferred contact details.

Bug Bounty

Micrantha does not currently advertise a paid bug bounty program unless a separate written program states otherwise.