We take security seriously and appreciate responsible disclosure of security vulnerabilities. If you discover a security issue, please report it to us privately.
Email: security@ollevamotoauctions.com
PGP Key: [PGP Public Key Fingerprint]
Include: Detailed description, steps to reproduce, potential impact, and proof of concept (if applicable).
In-scope: Platform vulnerabilities, smart contract bugs, API security issues, authentication bypasses, data leaks, XSS/CSRF/injection flaws.
Out-of-scope: Social engineering, DoS attacks, physical attacks, third-party services.
We will not pursue legal action against researchers who: make good-faith efforts to avoid privacy violations and data destruction, only interact with their own accounts, and promptly report vulnerabilities.
For questions regarding this document, please contact our support team.