# Valtik Studios — Security disclosure policy
# RFC 9116 compliant
# Drop this file at: public/.well-known/security.txt
# Also place at: public/security.txt (some scanners check both)

Contact: mailto:security@valtikstudios.com
Contact: https://valtikstudios.com/security
Expires: 2027-12-31T23:59:59.000Z
Encryption: https://valtikstudios.com/.well-known/pgp-key.txt
Preferred-Languages: en
Canonical: https://valtikstudios.com/.well-known/security.txt
Policy: https://valtikstudios.com/security/disclosure
Hiring: https://valtikstudios.com/careers

# Thanks to all security researchers who responsibly disclose findings to us.
# We operate our own BaaS exploit toolkit and vulnerable test lab suite —
# we take disclosure seriously and aim to respond within 48 hours.