At Golden Naina, we take the security of our systems seriously and strive to create a secure environment for our customers to browse. In the rare instance that a security researcher or member of the public identifies a vulnerability in our systems and responsibly discloses it to us, we appreciate their efforts. We work closely with them to address the issue promptly and, if desired, publicly acknowledge their contribution.
Currently, the Golden Naina Bug Bounty Program is private and operates on an invitation-only basis. If you haven't been invited to our program but believe you've discovered a valid in-scope vulnerability, please report it to us via the submission form available on our website.
Upon receiving your submission, our team will investigate your report and work with you to understand and remediate the vulnerability. In the meantime, please refrain from discussing or disclosing the vulnerability details until the report is closed.
Thank you for helping us keep Golden Naina and our customers safe.
We do not offer a bounty or cash reward program for such disclosures, but we do express our gratitude in other ways. For genuine ethical disclosures, we would be happy to publicly acknowledge your contribution in this section on our website, should you desire such recognition.
Shanu Shahbin (2024)