Security Disclosure¶

We take security issues seriously and appreciate responsible disclosure.

How to report a vulnerability¶

Email: security@ag2trust.com

Please include: - A clear description of the issue - Steps to reproduce - Impact assessment (what an attacker can do) - Any relevant logs or screenshots (redact sensitive data)

Scope¶

This policy covers: - ag2trust.com and docs.ag2trust.com - Customer API endpoints under api.ag2trust.com - The Ag2Trust dashboard at app.ag2trust.com

Safe harbor¶

We support good-faith security research. We ask that you: - Avoid privacy violations or data destruction - Use the minimum data needed to demonstrate impact - Give us a reasonable time to remediate before disclosure

Disclosure timeline¶

We aim to respond within 2 business days and provide status updates until resolution.