Vulnerability disclosure policy

Sky Dust is committed to ensuring the security and integrity of our AI technologies and platforms. We recognize the importance of partnering with the security research community to identify vulnerabilities in a responsible manner. This policy outlines our approach to handling vulnerability disclosures:

1. Reporting: We encourage the reporting of any security vulnerabilities in our services directly to us. Please send your findings to security@skydust.io. Provide sufficient details to allow us to understand and reproduce the issue.
2. Acknowledgment: Upon receipt, we will acknowledge your report within five business days.
3. Assessment: Our security team will assess the vulnerability, its impact, and initiate the necessary remediation process.
4. Confidentiality: We ask that you keep any information about vulnerabilities you've discovered confidential until we have resolved the issue.
5. Disclosure: Once the vulnerability has been addressed, we will work with you to disclose the findings in a manner that contributes to the security of all users.
6. Recognition: Contributors who responsibly disclose vulnerabilities will be recognized for their efforts to keep Sky Dust secure. Recognition may vary based on the impact and complexity of the vulnerability.

Sky Dust does not condone any malicious or illegal behavior in identifying vulnerabilities. Our policy aims to facilitate the responsible reporting and handling of vulnerabilities to protect users and enhance the security of our systems.

For further details or questions regarding this policy, please contact us.