How to Report Security Vulnerabilities

How to report security vulnerabilities to InfluxData

If you are an existing InfluxData customer or partner, please submit a service request for any security vulnerability you believe you have discovered in an InfluxData product at https://support.influxdata.com.

If you are not a customer or partner, please email [email protected] with your discovery. We encourage people who contact InfluxData Security to use email encryption using our encryption key.

InfluxData highly values and appreciates the members of the research community who find security vulnerabilities and responsibly disclose these to InfluxData so that fixes can be issued to all customers. We have our own roots as an open source software company with the philosophy that open source software should be free to use, integrate and create derivative works from regardless of the use case or the user. We develop our software in the open with the help of a global community of developers and contributors with whom we share a common understanding and trust in the free exchange of knowledge.

InfluxData’s policy is to credit and reward all researchers provided they follow responsible disclosure practices:

  • They do not publish the vulnerability prior to InfluxData releasing a fix for it.
  • They do not divulge exact details of the issue, for example, through exploits or proof-of-concept code.
  • InfluxData does not credit employees or contractors of InfluxData and its subsidiaries for vulnerabilities they have found.

Our current rewards include but are not limited to:

  • Public acknowledgement in release notes when a fix for reported security bug is issued
  • Entry into our Bug Bounty Hall of Fame which is listed on our website
  • Free InfluxData swag, including hoodies, t-shirts, socks and other gear
  • Complimentary tickets to InfluxData events and opportunities to meet with our technical staff

It is not InfluxData’s policy to provide cash awards for discovered vulnerabilities at this time.

Encryption key

-----BEGIN PGP PUBLIC KEY BLOCK-----
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=ihdf
-----END PGP PUBLIC KEY BLOCK-----
Scroll to Top