Security
Responsible disclosure
How security researchers and users can report vulnerabilities in our systems.
Last updated: July 3, 2026
Dina Innovations welcomes responsible reports of security vulnerabilities in our corporate website, infrastructure, and operated platforms—including DinaHub.
What to report
Please report issues such as:
- Authentication or authorization bypasses
- Remote code execution or injection vulnerabilities
- Exposure of sensitive user data
- Significant misconfigurations affecting security
What not to report
- Social engineering or physical attacks
- Denial-of-service attacks
- Issues in third-party services outside our control
- Missing security headers without demonstrated impact
How to report
Email security@dinainnovations.com with:
- A clear description of the vulnerability
- Steps to reproduce the issue
- Potential impact assessment
- Your contact information for follow-up
Our commitment
- We will acknowledge receipt within 5 business days where possible
- We will investigate and work to remediate valid reports
- We will not pursue legal action against researchers who act in good faith and follow this policy
Please do not
- Access, modify, or delete data that is not your own
- Disrupt our services or other users
- Publicly disclose vulnerabilities before we have had reasonable time to fix them
Related
See our Security page for an overview of our security practices.