# If you would like to report a security issue, you may report it to us according to this security.txt file.

Contact: mailto:bug-reports@garnstudio.com
Expires: 2026-12-10; 09:00:00 GMT+2
Preferred-Languages: en, no
Canonical: https://www.garnstudio.com/.well-known/security.txt

# ----------------------- Reporting a vulnerability ----------------------- 

If you have discovered an issue you want to report, please do the following: 

- Email your findings to bug-reports@garnstudio.com.
- Include details of what the issue is, how you discovered it, and attach any screenshots and such if possible. 
- Ensure you give enough details for us to reproduce the issue.
- Please do not take advantage of the vulnerability you have found.
- Please do not disclose the vulnerability to others until it is resolved.

# ----------------------- Bug Bounty ----------------------- 

We currently do not offer a paid bug bounty program. However, we might offer a reward if: 

- we believe the severity of the reported issue merits that;
- our security team is able to reproduce and verify the issue;
- the issue is not previously known or already reported.

Reporters that qualify for a reward will be offered it.