Vulnerability Reporting Policy

Crowdin is transitioning to managing its bug bounty program through HackerOne. The program is currently private. To request an invitation, contact support@crowdin.com and provide your HackerOne handle.

Details about the vulnerabilities we’re looking for, exclusions, and program conditions are available directly on HackerOne.