Security

Widemesh is committed to security and focused on keeping you and your data safe. Widemesh adheres to industry-leading standards across all our roles, including securing your cloud credentials, installing software in your infrastructure, monitoring and deploying your workloads.

Contact security@widemesh.com if you have any questions or comments.

Responsible disclosure policy

At Widemesh, we are committed to keeping our systems, data, and product(s) secure. Despite the measures we take, security vulnerabilities will always be possible.

If you believe you’ve found a security vulnerability, please send it to us by emailing security@widemesh.com.

Please provide us with a reasonable amount of time to resolve any issue before disclosing it to the public or a third-party; we will respond to your report within five business days of receipt and attempt to keep you regularly informed of our progress toward resolving the vulnerability.

Please include the following details with your report:

  • Description of the location and potential impact of the vulnerability
  • A detailed description of the steps required to reproduce the vulnerability (POC scripts, screenshots, and compressed screen captures are all helpful to us)

We expect you to make a reasonable effort to avoid privacy violations as well as destruction, interruption, or segregation of services and/or data.

While researching, we ask you to refrain from:

  • Denial-of-Service (DoS)
  • Spamming
  • Social engineering (including phishing) of Widemesh staff or contractors
  • Any attempts against Widemesh property or cloud infrastructure

If you have followed the above instructions, we will not take any legal action against you regarding the report.