Bossa BossaResearch ← Home
Security

Reporting a vulnerability

We take the security of Bossa Research, Bossa Labs, and our participants' data seriously. If you believe you've found a security vulnerability, we want to hear from you — and we'll work with you to confirm and fix it.

How to report

Email security@bossaresearch.com with a clear description. Our machine-readable contact is also published at /.well-known/security.txt (RFC 9116).

Please include:

Our commitment

Please do

Scope: bossaresearch.com, app.bossaresearch.com, and participante.bossaresearch.com. Third-party services we use are governed by their own programs.