Ensuring the security and integrity of the Twilio platform is critical to the service we provide our customers. We are committed to providing a secure product and appreciate help from the community in responsibly identifying ways for us improve Twilio.
The Twilio disclosure program is managed through Bugcrowd. To see the terms of the program and participate, go to Bugcrowd and sign up as a tester. You will need to accept the Twilio terms of service to engage in testing. If you have identified a vulnerability, please report it via Bugcrowd to be eligible for a reward.
The contribution of white hat researchers is greatly appreciated. Here are some of the folks that have helped us to improve security at Twilio.
- Chris Varenhorst @varenc
- Jon Oberheide @jonoberheide
- Tim Craft @timcraft
- Matt Sommer
- Patrick McKenzie @patio11
- Ari Rubinstein @arirubinstein
- Maxim Rupp
- Rakan Alotaibi @hxteam
- Emanuel Bronshtein @e3amn2l
- Reginaldo Silva @reginaldojsf
- Ajay Singh Negi @ajaysinghnegi
- Kamil Sevi @kamilsevi
- Frans Rosén @detectify
- Himanshu Kumar Das @mehimansu
- Rafay Baloch @rafaybaloch
- Adam Ziaja @adamziaja
- Nakul Mohan
- Nitin Goplani & Jatinder Pal Singh @jatinlibra
- Manish Bhattacharya @umenmactech
- Madhu Akula @madhuakula
- Rafael Pablos