# Open Renting Limited Security Policy Contact: mailto:security@openrentingltd.com Contact: mailto:support@openrentingltd.com Expires: 2027-07-10T23:59:59Z Preferred-Languages: en Canonical: https://openrentingltd.com/security.txt Policy: https://openrentingltd.com/security Acknowledgments: https://openrentingltd.com/security Hiring: https://openrentingltd.com/careers Encryption: https://openrentingltd.com/pgp-key.txt # Scope The following systems are in scope: https://openrentingltd.com # Reporting Please report: - Authentication vulnerabilities - Authorization issues - Remote code execution - SQL Injection - Cross-site scripting (XSS) - CSRF - Sensitive information disclosure - Server misconfiguration - API vulnerabilities Please include: - Detailed description - Reproduction steps - Screenshots where appropriate - Proof of concept - Impact assessment # Response Goals Initial response: within 72 hours Status updates: every 7 days where applicable # Disclosure Please allow sufficient time for remediation before public disclosure.