Skip to main content

Security Disclosure Policy

Reporting a Vulnerability

The Omen Den L.L.C. welcomes reports of suspected security vulnerabilities. If you believe you have found an issue, please email security@theomenden.com with enough detail for us to reproduce it — affected URL or component, the steps you took, and any relevant logs or screenshots. This address is also published in our security.txt.

Scope

This policy covers The Omen Den and its official subdomains. Please do not test in ways that could degrade service for others: no denial-of-service, no automated scanning that generates high traffic, and no access to, modification of, or exfiltration of data that is not your own.

Safe Harbor

We will not pursue or support legal action against researchers who make a good-faith effort to comply with this policy, avoid privacy violations and service disruption, and give us a reasonable opportunity to remediate before any public disclosure. If in doubt about whether an action is authorized, contact us first.

What to Expect

We aim to acknowledge new reports within five business days, keep you updated as we investigate, and let you know when the issue is resolved. We are grateful for responsible disclosure and are happy to credit reporters who wish to be named once a fix has shipped.