---
|
layout: "inner"
|
page_title: "Security"
|
description: |-
|
Serf takes security very seriously. Please responsibly disclose any security vulnerabilities found and we'll handle it quickly.
|
---
|
|
<h1>Security</h1>
|
|
<p>
|
We understand that many users place a high level of trust in HashiCorp and
|
the tools we build. We apply best practices and focus on security to make
|
sure we can maintain the trust of the community.
|
</p>
|
<p>
|
We deeply appreciate any effort to disclose vulnerabilities responsibly.
|
</p>
|
<p>
|
If you would like to report a vulnerability, please see the
|
<a href="https://www.hashicorp.com/security.html">HashiCorp security page</a>,
|
which has the proper email to communicate with as well as our PGP key.
|
</p>
|
<p>
|
If you aren't reporting a security sensitive vulnerability, please
|
open an issue on the standard <a href="https://github.com/hashicorp/consul">GitHub</a>
|
repository.
|
</p>
|
