Pave HackerOne

Target Policy
https://hackerone.com/pave?type=team
Structured Scope
  • Asset Identifier
    Asset Type
    Max Severity
  • https://www.pave.com/
    URL
    none
  • Pave API

    This is the API that powers the frontend application, https://pave-web-iv5ackplxa-uc.a.run.app

    OTHER
    none
  • app.pave.com

    Do not modify the integrations set up for the company. This will stop the application from working across all testers.

    URL
    critical
  • pave-web.pave.com

    Please do not test the events-* endpoints.

    URL
    critical
  • https://pave-web.pave.com

    Please do not test the events-* endpoints.

    URL
    critical
Target Scope Domains
  • app.pave.com
  • pave-web.pave.com
Tech Stack
Last Finished Scan:
Scan Name
Fleet
Finished
State
auto-gausubs-2-kxss
allkxss
1 year, 1 month ago
Finished
auto-gausubs-2-kxss
  • Fleet: allkxss
  • Duration: 17.65 Minutes
  • Finished: 1 year, 1 month ago