Security
Last Updated: May 11, 2026
At a glance
- Report vulnerabilities through the form below — submissions route to our team via HackerOne.
- In scope: humanize.app, go.humanize.app, and the Humanize API.
- Safe harbor applies to good-faith research that follows this policy.
Submit a report
Scope
- humanize.app— marketing site
- go.humanize.app— the Humanize web app
- Humanize API endpoints accessed by the web app
Out of scope: social engineering, physical attacks, denial-of-service, third-party services we don’t operate, and findings on staging or preview deployments.
Safe harbor
We will not pursue legal action against researchers who act in good faith, comply with this policy, and avoid privacy violations, destruction of data, or interruption of service while testing.