Liberapay icon Liberapay HackerOne

Target Policy
https://hackerone.com/liberapay?type=team
Structured Scope
  • Asset Identifier
    Asset Type
    Max Severity
  • http://*.liberapay.com
    WILDCARD
    critical
  • https://github.com/liberapay/liberapay.com
    SOURCE_CODE
    critical
  • libravatar.org

    Libravatar does not belong to Liberapay.

    URL
    none
  • Any IP belonging to Liberapay
    OTHER
    critical
  • https://github.com/liberapay/liberapay.com/blob/master/sql/app-conf-defaults.sql

    The test credentials in this file are not used in production. Exposing them is an accepted risk.

    SOURCE_CODE
    none
  • *.liberapay.com
    WILDCARD
    critical
Target Scope Domains
  • liberapay.com
Tech Stack
Last Finished Scan:
Scan Name
Fleet
Finished
State
auto-gausubs-2-kxss
allkxss
1 year, 1 month ago
Finished
auto-gausubs-2-kxss
  • Fleet: allkxss
  • Duration: 17.70 Minutes
  • Finished: 1 year, 1 month ago