Security Policy

Updated: March 10th, 2021

Reporting security vulnerabilities

Security vulnerabilities in the Friendica software can be reported two ways:

We do not have a specific policy regarding which vulnerabilities should be disclosed publicly or privately.

Bounties

The Friendica project doesn’t offer cash or anything else of a material value for reporting security vulnerabilities, whether they are confirmed or not.