# Responsible disclosure policy for ASTRAQ CYBER DEFENCE PRIVATE LIMITED # RFC 9116 — https://www.rfc-editor.org/rfc/rfc9116 Contact: mailto:security@astraqcyberdefence.com Contact: https://astraqcyberdefence.com/trust Expires: 2027-01-01T00:00:00.000Z Preferred-Languages: en, hi Canonical: https://astraqcyberdefence.com/.well-known/security.txt Policy: https://astraqcyberdefence.com/trust Hiring: https://astraqcyberdefence.com/#contact # If you believe you have found a security vulnerability in any AstraQ product # (Phoebe, Athena, Metis, Morpheus) or in our infrastructure, please report it # privately to the contact above. We will acknowledge receipt within 2 business # days and aim to triage every credible report within 5 business days. # # Please do not publicly disclose the issue until we have had reasonable time # to investigate and remediate. We commit to acknowledging researchers who # responsibly disclose qualifying vulnerabilities.