Vulnerability Disclosure Program (VDP)

VDPs are meant for responsibly reporting vulnerabilities you encounter — not for actively hunting for fame or reputation. Even if you're just starting out, consider focusing on rewarded bug bounty programs instead.

redis-vdp

HackerOneView on HackerOne

RawAI Enhanced

In Scope

Out of Scope

In-Scope Assets (5)

Asset	Category	Bounty	Quick Links
api.redislabs.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
app.redislabs.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
redis.io	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
www.redis.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
www.redislabs.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa

Scope Changes (15)

Feb 25, 2026

Change	Asset	Category	Scope	Time
Added	www.redis.com	URL	In Scope	19:15
Added	www.redislabs.com	URL	In Scope	19:15
Added	api.redislabs.com	URL	In Scope	19:15
Added	app.redislabs.com	URL	In Scope	19:15
Added	redis.io	URL	In Scope	19:15

Feb 22, 2026

Change	Asset	Category	Scope	Time
Added	redis.io	URL	In Scope	00:44
Added	app.redislabs.com	URL	In Scope	00:44
Added	www.redis.com	URL	In Scope	00:44
Added	www.redislabs.com	URL	In Scope	00:44
Added	api.redislabs.com	URL	In Scope	00:44

Feb 21, 2026

Change	Asset	Category	Scope	Time
Added	redis.io	URL	In Scope	19:12
Added	app.redislabs.com	URL	In Scope	19:12
Added	www.redis.com	URL	In Scope	19:12
Added	www.redislabs.com	URL	In Scope	19:12
Added	api.redislabs.com	URL	In Scope	19:12