Report potential security issues privately with enough detail for reproduction and triage.
How to report
What to include in a high-quality report
Response workflow

Report potential security issues privately with enough detail for reproduction and triage.

Include a clear issue summary, reproduction steps, impact assessment, and safe proof-of-concept details.

How to report

Submit your report through your existing Callaro support/security channel.
Include affected endpoint/page/environment details.
Share minimal reproducible steps and expected-versus-actual behavior.
Provide potential impact severity and affected customer scope.
Include your preferred contact details for follow-up.

What to include in a high-quality report

Vulnerability type and affected component.
Reproduction sequence with request examples where applicable.
Security impact (confidentiality, integrity, availability).
Mitigations already tested on your side.
Suggested remediation if known.

Response workflow

Triage acknowledgment from the security team.
Severity assessment and fix prioritization.
Remediation progress updates for validated findings.
Closure and guidance for any required customer-side action.

Do not perform destructive testing or access data you are not authorized to view.

⌘I