All public security vulnerability disclosures made by stypr are published on this website.
Please contact roorot+advisory@ststyprypr.com for any inquiries regarding the advisory.

Technical details of a vulnerability won't be shared for 30 days if a vendor patches it before the 90-day deadline. The 30-day period is intended for user patch adoption. Most of rules for responsible disclosure are similar or identical to Google Project Zero's Disclosure Policy. Respective rules apply upon mutual agreements.

This page works best with the latest version of Chrome or Firefox.