# Security Policy

## Reporting a Vulnerability

If you've found a vulnerability in our service or website, or want additional information regarding how we manage security, please send an email to security@postman.com. We will review it and respond to you within 24 hours. Please use our [PGP public key](https://assets.getpostman.com/getpostman/documents/publickey.txt) to encrypt your communications with us.

If you are a security researcher, please go through the following points for reporting security issues.

- Mail to security@postman.com and express interest along with a short summary of the nature of issue you want to report.
- We will triage and add your email address to our internal security tracker.
- Subsequently you can report your security issues directly using the tracker.


> Read our [security reporting guidelines and policy](https://www.postman.com/vulnerability-reporting) for more details.