Vulnerability Disclosure Program (VDP)
VDPs are meant for responsibly reporting vulnerabilities you encounter — not for actively hunting for fame or reputation. Even if you're just starting out, consider focusing on rewarded bug bounty programs instead.
moov
7
In Scope
5
Out of Scope
In-Scope Assets (7)
| Asset | Category | Bounty | Quick Links | |
|---|---|---|---|---|
| api.moov.io | URL | No | ||
| cards.moov.io | URL | No | ||
| dashboard.moov.io | URL | No | ||
| gateway.moov.io | URL | No | ||
| infra-oss.moov.io | URL | No | ||
| moov.io | URL | No | ||
| oss.moov.io | URL | No |
Out-of-Scope Assets (5)
| Asset | Category | Bounty | |
|---|---|---|---|
| email-zendesk | OTHER | No | |
| slack.moov.io | URL | No | |
| support.moov.io | URL | No | |
| tools.cards.moov.io | URL | No | |
| tools.moov.io | URL | No |
Scope Changes (36)
Feb 25, 2026
| Change | Asset | Category | Scope | Time |
|---|---|---|---|---|
| Added | oss.moov.io | URL | In Scope | 19:15 |
| Added | moov.io | URL | In Scope | 19:15 |
| Added | gateway.moov.io | URL | In Scope | 19:15 |
| Added | cards.moov.io | URL | In Scope | 19:15 |
| Added | api.moov.io | URL | In Scope | 19:15 |
| Added | email-zendesk | OTHER | Out of Scope | 19:15 |
| Added | support.moov.io | URL | Out of Scope | 19:15 |
| Added | tools.moov.io | URL | Out of Scope | 19:15 |
| Added | dashboard.moov.io | URL | In Scope | 19:15 |
| Added | infra-oss.moov.io | URL | In Scope | 19:15 |
| Added | tools.cards.moov.io | URL | Out of Scope | 19:15 |
| Added | slack.moov.io | URL | Out of Scope | 19:15 |
Feb 22, 2026
| Change | Asset | Category | Scope | Time |
|---|---|---|---|---|
| Added | gateway.moov.io | URL | In Scope | 00:45 |
| Added | api.moov.io | URL | In Scope | 00:45 |
| Added | cards.moov.io | URL | In Scope | 00:45 |
| Added | infra-oss.moov.io | URL | In Scope | 00:45 |
| Added | moov.io | URL | In Scope | 00:45 |
| Added | oss.moov.io | URL | In Scope | 00:45 |
| Added | tools.cards.moov.io | URL | Out of Scope | 00:45 |
| Added | dashboard.moov.io | URL | In Scope | 00:45 |
| Added | support.moov.io | URL | Out of Scope | 00:45 |
| Added | slack.moov.io | URL | Out of Scope | 00:45 |
| Added | tools.moov.io | URL | Out of Scope | 00:45 |
| Added | email-zendesk | OTHER | Out of Scope | 00:45 |
Feb 21, 2026
| Change | Asset | Category | Scope | Time |
|---|---|---|---|---|
| Added | api.moov.io | URL | In Scope | 19:12 |
| Added | email-zendesk | OTHER | Out of Scope | 19:12 |
| Added | tools.moov.io | URL | Out of Scope | 19:12 |
| Added | tools.cards.moov.io | URL | Out of Scope | 19:12 |
| Added | slack.moov.io | URL | Out of Scope | 19:12 |
| Added | support.moov.io | URL | Out of Scope | 19:12 |
| Added | dashboard.moov.io | URL | In Scope | 19:12 |
| Added | oss.moov.io | URL | In Scope | 19:12 |
| Added | moov.io | URL | In Scope | 19:12 |
| Added | infra-oss.moov.io | URL | In Scope | 19:12 |
| Added | gateway.moov.io | URL | In Scope | 19:12 |
| Added | cards.moov.io | URL | In Scope | 19:12 |