Security Policy

Effective date: 02/01/2025

Last updated: 02/18/2025

Reporting security issues

If you discover a security vulnerability, please report it to us immediately.

Send your report to: mail@ygglabs.com.

We encourage responsible disclosure and will work with you to resolve any issues.

Scope

• This policy applies to security vulnerabilities found on our main website and related services.
• Exclusions include social media accounts and third-party services we do not control.

What we expect

• Provide a clear, detailed report with steps to reproduce the issue.
• Avoid public disclosure before we have addressed the vulnerability.
• Do not exploit vulnerabilities beyond what is necessary for testing.

Our commitment

• We will acknowledge your report within 48 hours.
• A fix will be prioritized based on the severity of the issue.
• If you wish to be credited, we will acknowledge your contribution.

Legal safe harbor

We will not take legal action against researchers who act in good faith and follow this policy.

Changes to this policy

We may update this policy at any time. Please check this page for the latest version.