security@patriotmail.ai
Use the dedicated security mailbox for vulnerabilities, exposed secrets, account-takeover risks, or other sensitive findings.
Security
Security
Responsible disclosure guidance, the right contact channel for security-sensitive issues, and a plain-English summary of how Patriot Mail handles vulnerability reports today.
Patriot Mail takes security issues seriously. The product handles email, authentication tokens, and local client-side data, so vulnerability reports are reviewed with priority when they could affect user privacy, account access, or message integrity.
Report a security issue
If you believe you have found a vulnerability or another security-sensitive issue, contact:
Existing users can open a draft directly inside Patriot Mail. Public users can use the email address above from any mail client.
What to include
- A concise description of the issue and why it matters.
- Reproduction steps, proof-of-concept details, or logs.
- The affected environment, browser, operating system, or app version if relevant.
- Any mitigation ideas or indicators that could help triage the report.
What to avoid
- Do not access data that is not your own.
- Do not run destructive tests, spam the service, or disrupt availability for users.
- Do not publish details before Patriot Mail has had a reasonable chance to investigate and respond.
Current program scope
Patriot Mail does not currently advertise a public bug bounty or guaranteed payment program. Reports are still welcomed and reviewed, especially for issues involving authentication, authorization, inbox data handling, content sanitization, token leakage, or account compromise.
Acknowledgements
Responsible disclosures help improve the product for everyone. Patriot Mail appreciates security researchers and technically careful users who report issues privately and with enough context to reproduce them.