Responsible Disclosure

At Sysdig, the security of our systems and the privacy of our users are top priorities. We are committed to maintaining a safe and secure environment, and we value the contributions of the security community in helping us achieve this goal.

If you believe you have identified a security vulnerability in any of our services, products, or infrastructure, we encourage you to report it to us responsibly.

Reporting a Vulnerability

Report security issues by emailing us at security@sysdig.com.

Include the following details in your report if applicable:

  • A clear description of the vulnerability
  • Steps to reproduce the issue
  • The potential impact
  • Any relevant screenshots or proof-of-concept code
  • Your contact information for follow-up questions

Guidelines for Responsible Disclosure

When reporting a vulnerability, we ask that you:

  • Do not publicly disclose the issue until we have had a reasonable amount of time to investigate and address it
  • Avoid violating the privacy of others or disrupting services
  • Limit testing to your own accounts or systems for which you have explicit permission

We sincerely appreciate your efforts to help keep Sysdig and our users safe. Thank you for practicing responsible disclosure.