Bug Bounty Program
Our bug bounty program encourages responsible disclosure of security vulnerabilities in our open-source project and hosted service. Rewards are at our discretion and may include public recognition and/or cash at our discretion up to $1,000 USD. Please avoid testing on production systems, and report issues to security@littlehorse.io.
Please report any bugs found related to:
- The source-available LittleHorse Server
- LittleHorse for Kubernetes
- Our LittleHorse Cloud infrastructure hosted on
*.littlehorse.cloud
Out-of-scope issues include spam, social engineering, and denial-of-service attacks.