Inflection

target_in_scope

asset_identifier asset_type availability requirement confidentiality requirement eligible for bounty eligible for submission integrity requirement max_severity
*.goodhire.com URL critical
api.goodhire.com URL critical
app.goodhire.com URL critical
www.goodhire.com URL high high high critical
Please note that www.goodhire.com is hosted on HubSpot. Depending on the nature of the vulnerability you find, we may direct you to HubSpot's bug bounty program instead.

target_out_of_scope

asset_identifier asset_type availability requirement confidentiality requirement eligible for bounty eligible for submission integrity requirement max_severity
*.identity.com URL none
*.inflection.com URL none
Inflection.com and its subdomains are currently out of scope for this program.
api.identity.com URL none
checks.identity.com URL none
goodhire.auth0.com URL none
Any vulnerabilities discovered in the Auth0 platform should be reported to Auth0 directly: https://auth0.com/whitehat
www.identity.com URL none
*.goodhire.com URL none
api.goodhire.com URL none
app.goodhire.com URL none
www.goodhire.com URL high high high none
Please note that www.goodhire.com is hosted on HubSpot. Depending on the nature of the vulnerability you find, we may direct you to HubSpot's bug bounty program instead.