Here are the current versions of frii.site which are supported.
| Version | Supported |
|---|---|
| frii.site | ✅ |
| canary.frii.site | ✅ |
| server.frii.site | ✅ |
| api.frii.site | ✅ |
| legacy.frii.site | ❌ |
To report a vulnerability, either go to https://frii.site/report/security , or contact [email protected] on email.
| Contact method | Expected time to give updates |
|---|---|
| frii.site/report/security | 1-2 days |
| [email protected] | 10 minutes - 6 hours |
- Note that response time may change based on the situation.
Please include the following information in your report.
- API endpoint URL, or website address
- Expected behaviour
- Actual behaviour
- Importance (0-5, 5 being very urgent)
- Description of the vulnerability
- Steps to reproduce (not mandatory, but highly recommended)
- Impact of the issue
- How an attacker could use this
- We recieve your report
- We investigate the problem immediately
- We judge the problem, and assign it a priority
- We give you a tracking link to see the progress and information about your report
- We fix the issue
- We give you a reward
By reporting vulnerabilities, you can get yourself some perks. Here is a list of them
| Importance (0-5) | Reward |
|---|---|
| 0 | An email where we thank you |
| 1-4 | Extend your maximum domain limit by n, where n is the importance |
| 5 | Extend your maximum domain limit by 5, and give you access to use wildcards |