Vulnerability Disclosure Program

BadApe NFT understands the value of the security community in ensuring the safety of our utility offerings, services, and websites for our hodlers. We appreciate your contributions to our vulnerability disclosure programme in advance. Internal Team will manage vulnerability reports filed through this programme. This team will work with other external teams to investigate and, if necessary, devise a reaction strategy. A critical component of our vulnerability response process is maintaining communication amongst all stakeholders involved, both internal and external.

Scope
– This programme is only for exploitable security flaws and CVEs discovered in BadApe NFT utility offerings, services, and websites.
– BadApe NFT intends to respond to all new vulnerability reports within 14 days.
– BadApe NFT websites (Vulnerability Reports against *.badape.io websites or any other web domains owned by BadApe NFT), DDoS, Domain Hijacking, SSRF and CSRF)