Security Overview
The Security Policy on Guru includes a vulnerability disclosure policy and guidelines for reporting vulnerabilities in the Guru ecosystem. It explains the process for reporting and disclosing vulnerabilities through the use of the Guru Security and how the Guru team handles and resolves reported vulnerabilities. The contents of the policy help avoiding privacy violations and keeping information confidential. Also included are commitments from the Guru team, such as not pursuing legal action and working with researchers to disclose issues in a timely manner. The disclosure process includes steps for verifying and confirming reported vulnerabilities, determining their potential impact on the Guru platform, and patching and disclosing the vulnerability to the public. The payment process for reported vulnerabilities is also outlined and instructions for contacting the Guru Security Team are provided. For more information, visit the Security Policy documentation sites: