Inventor is committed to the security of our services. We take security very seriously, and we greatly appreciate responsible disclosure of security vulnerabilities.
If you believe you have found a security issue with the Inventor platform, we urge you to notify us as soon as possible. We investigate all reports and will do our best to fix the issue as soon as possible.
If you are a security researcher, we ask that you follow our rules while researching vulnerabilities to help protect our users and services:
We aren’t interested in reports of the following types of vulnerabilities, except for extreme situation where you have a proof of concept where they can be used to successfully exfiltrate user data with minimal user action:
Security research activities conducted in compliance with the rules listed above will be considered authorized conduct and we will not initiate legal action against you. If legal action is initiated by a third party against you in connection with activities conducted under this policy, we will take steps to make it known that your actions were conducted in good faith and in compliance with this policy.
If automated or manual ToS action (account ban or suspension) is initiated against your account as a result of your research activities, please contact us and we will work with you to resolve the issue. We employ relatively aggressive automated filtering systems to prevent platform-wide abuse.
We currently do not offer monetary rewards for reporting security vulnerabilities, although we may offer free access to paid products, or other rewards in the future.
For security disclosures, please email [email protected]
with:
We will respond with a plan to resolve the issue, and will keep you updated on the status of the issue as we work to resolve it.