Halborn Audit Validates QRL's Post-Quantum Cryptography Library

Read More

Report a Security Issue

The QRL team encourage responsible security investigation and reporting.

What to report

Contact us if you have discovered security issues in any of the following:

  • QRL protocol design and implementation
  • Services deployed by the QRL team
  • QRL network and infrastructure

If in doubt, send a report.

How to report

To report a security issue send an email to security@theqrl.org

Consider encrypting your message using the PGP/GPG key embedded below.

1

-----BEGIN PGP PUBLIC KEY BLOCK-----
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=pyVJ
-----END PGP PUBLIC KEY BLOCK-----

To facilitate reproduction of reported issues, we encourage you to include the following information if possible:

  • Description of the issue
  • Description of the issue’s potential security impact
  • The affected resource. e.g. URL, GitHub code snippet, transaction
  • Ideally a proof-of-concept that demonstrates the issue

Our process

Upon receiving your report, the QRL team will assess the issue and reach out to ask for additional information and/or provide assessment.

Any reported security issues may be eligible for rewards under the terms of The QRL Bug Bounty Program.

Contact Us

Join our mailing list, contact the team or join our vibrant and friendly community of users, developers and enthusiasts on Discord or one of our other social channels

Press enquiries

press@theqrl.org

Support requests

support@theqrl.org

General enquiries

info@theqrl.org