How to Report a Security Issue

Important information

It is essential that you maintain confidentiality regarding the vulnerability until it has been resolved and publicly disclosed. Exceptions to this rule only apply if you receive explicit permission from the Ennote security team.

Direct Reporting

Email: Send a detailed email to our dedicated security address at [email protected]. Include all relevant information in the email body and any attachments that may help in understanding the issue.

What Should Be Included in a Security Report

Contact Information: Provide your full name, email address, and any other contact details so we can follow up with you if necessary.
Description of the Issue: Clearly describe the security issue you encountered. Include the nature of the vulnerability or threat, how it was discovered, and its potential impact.
Steps to Reproduce: If applicable, provide detailed steps on how to reproduce the issue. This helps our team understand and address the problem effectively.
Screenshots or Attachments: Include any relevant screenshots, error messages, or files that can illustrate the issue. This additional information can be crucial for diagnosing and fixing the problem.
Environment Details: Specify the environment in which the issue was discovered, such as the software version, operating system, or any other relevant technical details.