Contact: mailto:security@cincra.com
Expires: 1970-10-28T00:00:00.000Z
Preferred-Languages: en
Canonical: https://cincra.com/.well-known/security.txt
Policy: https://cincra.com/trust
Acknowledgments: https://cincra.com/trust

# Responsible disclosure
# - Acknowledged within 2 business days.
# - Critical findings patched within 7 days.
# - No paid bug bounty yet; researchers credited in release notes with permission.
# - Please do not test against customer-tenant data. A scratch org can be provisioned on request.