Security Disclosure

1. Reporting a Vulnerability

If you believe you have found a security issue, please report it to security@vibbs.tv. Include steps to reproduce, impacted URLs, and any supporting logs or screenshots.

2. Scope

This disclosure program covers the vibbs.tv website, API, and related infrastructure. Do not test against third-party services we use directly.

3. Safe Harbor

We will not pursue legal action for good-faith security research that complies with this policy and avoids privacy violations, data destruction, or service disruption.

4. What to Avoid

• Do not attempt to access or modify other users' data.
• Do not disrupt service availability (e.g., DDoS).
• Do not use automated scanning that may degrade performance.

5. Response Targets

We aim to acknowledge reports within 5 business days and provide status updates as appropriate.