LaunchDarkly HackerOne
Target Policy
https://hackerone.com/launchdarkly?type=teamStructured Scope
-
Asset Identifier
Asset Type
Max Severity
-
slack.launchdarkly.comURLnone
-
app.launchdarkly.comURLcritical
-
blog.launchdarkly.comURLnone
-
stream.launchdarkly.comURLcritical
-
docs.launchdarkly.com
Our docs site is now hosted at launchdarkly.com/docs.
URLcritical -
events.launchdarkly.comURLcritical
-
launchdarkly.com
This is our static marketing site.
URLnone -
https://launchdarkly.com/docs
This is our static documentation website.
URLcritical -
sandbox.launchdarkly.comURLnone
-
status.launchdarkly.comURLnone
-
LaunchDarkly Open Source SDKs
Our SDKs are open source and are available on Github (e.g. [React client SDK](https://github.com/launchdarkly/react-client-sdk)). We encourage researchers to dig into the open source code if interested. However, we will **not** be accepting the following types of findings:
- Findings related to non-SDK repositories (i.e., repos not ending in `-sdk`)
- Vulnerability/dependency scan results of our source code. Please try and dig into our source code more deeply than just reporting a scan result that we may already be aware of.SOURCE_CODEcritical
Target Scope Domains
- app.launchdarkly.com
- docs.launchdarkly.com
- events.launchdarkly.com
- launchdarkly.com
- stream.launchdarkly.com
Tech Stack
Last Finished Scan:
Scan Name
Fleet
Finished
State
- Fleet: allkxss
- Duration: 18.08 Minutes
- Finished: 2 weeks, 6 days ago