Security Vulnerabilities
Security & Disclosures
We believe in fostering collaboration with security researchers to proactively identify and address potential vulnerabilities. By working together, we can strengthen the resilience of our systems, protect user data, and maintain the trust of our clients.
Ethical reporting of security issues plays a vital role in creating a safer digital environment, and we are committed to recognizing and supporting those who contribute responsibly to this goal.
Security Incident Response Team
If you identify a potential security vulnerability in our systems, we encourage you to report it responsibly to help us maintain the safety and integrity of our services. Reports can be submitted to our security incident response team via email to [email protected]
To ensure secure communication, you can use PGP encryption, with our public key retrievable at request.lv/security/key. We appreciate your contribution to strengthening our cybersecurity.
Key ID: 3AAECB544877C6CB
Key Type: RSA (2048 bit)
Fingerprint: 36FD 047F 850B E9C9 BFBD 2BD6 3AAE CB54 4877 C6CB
Our Security Vulnerability Disclosure Policy defines the procedures for responsibly reporting vulnerabilities and the actions we take to address them. It outlines the scope of our systems, prohibited testing methods, and our commitments to protecting user data.
Websites managed by Request contain a security.txt file, a standard text file designed to provide security researchers with an easy way to find our vulnerability disclosure contact details.
The security.txt file is located in the /.well-known/ directory of each website. For example, the security.txt file for request.lv can be found at request.lv/.well-known/security.txt
We recognize and appreciate the efforts of ethical security researchers in identifying vulnerabilities. We are committed to collaborating with those who act in good faith, responding to reports promptly, and working transparently to resolve issues.
We will not take legal action against individuals who comply with our Security Vulnerability Disclosure Policy during their testing, refrain from disclosing vulnerability details publicly before we have investigated and resolved the issue, and adhere to applicable laws in their country of residence and the Republic of Latvia.