# Spondula security disclosure policy — RFC 9116
# Please report any vulnerability you find responsibly.
# We do not currently operate a paid bug bounty programme, but we acknowledge
# all valid reports and credit researchers (with consent) once a fix has shipped.

Contact: mailto:hello@spondula.com
Expires: 2027-05-06T00:00:00.000Z
Preferred-Languages: en
Canonical: https://spondula.com/.well-known/security.txt
Policy: https://spondula.com/legal/terms