# Security Policy## Reporting a Vulnerability:hugging_face: We have our bug bounty program set up with HackerOne. Please feel free to submit vulnerability reports to our private program at https://hackerone.com/hugging_face.Note that you'll need to be invited to our program, so send us a quick email at security@huggingface.co if you've found a vulnerability.
