How to report
- Email: support@notte.cc
- Include clear, reproducible steps
- One issue per report
Rewards
- Bounties are discretionary
- Typical range: 500
- Only applies to previously unreported issues
- Amount depends on severity, impact, and report quality
- We may choose not to award a bounty
Rules
- Do not disrupt our service
- Do not access or modify data you don’t own
- No automated scanning or abuse
- No “testing” beyond what’s needed to prove the issue
Disclosure
- Give us time to fix the issue before public disclosure
- Reports made in bad faith or for leverage will not be rewarded