Vulnerability Reward Programme
Help us secure our browser engines. We reward security research.
Responsible Disclosure Policy
At MegaTools, we prioritize client security. If you discover a client-side memory leak, cache poisoning vulnerability in our service worker configs, or input sanitization bugs in our formatters, please submit a confidential report to legal@megatools.tech before public disclosure.
Eligible In-Scope Vulnerabilities
• Client-side memory leaks exposing clipboard memory traces. • Cross-Site Scripting (XSS) vectors in output parsing panels. • Cache hijacking vulnerabilities in service worker caching rules. • Logic bypasses in hash generation calculations.
Rewards & Hall of Fame
Depending on the severity level (Low, Medium, High, Critical), we offer official contributors badges, inclusion in our developer registry, and financial bounties for verified exploits. Triage is done within 48 hours.