Vulnerability Disclosures for XBOW Systems

At XBOW, we’re on a mission to redefine offensive security through AI-powered penetration testing that scales with the speed of modern development. Our platform autonomously discovers, analyzes, and validates vulnerabilities — helping teams stay ahead of risk.

Our Current Stance on Bug Bounty & Disclosure Programs:
While we’re deeply committed to security and openness with the broader research community, we do not currently maintain a formal bug bounty program or structured vulnerability disclosure program. Right now, our focus is on building the most powerful autonomous offensive security platform — and on responsibly evolving how vulnerabilities are found and communicated.

That said, we greatly value the contributions of security researchers, ethical hackers, and anyone who takes the time and effort to identify issues. Your insights help make the digital world safer for everyone.

How to Share Security Findings with Us:
If you believe you’ve found a security vulnerability or an issue that warrants our attention, please contact our Security Team: Please send us an email at security@xbow.com with as much detail as you can provide — including steps to reproduce, impact, and any supporting evidence.

We commit to reviewing every submission thoughtfully, and we’ll work with you in good faith to understand and address the issue. While we don’t offer monetary rewards today, we’re genuinely grateful for community contributions and will acknowledge collaborators where appropriate.