# Custom Domain — security contact and vulnerability disclosure policy. # RFC 9116 (https://www.rfc-editor.org/rfc/rfc9116). Served as text/plain over # HTTPS at https://app.customdomain.ai/.well-known/security.txt # # NOTE (pre-launch): update Expires before it lapses (RFC 9116 recommends < 1 # year out) and, ideally, OpenPGP-sign this file. See /security for the full policy. Contact: mailto:security@customdomain.ai Contact: https://app.customdomain.ai/security Expires: 2027-07-01T00:00:00.000Z Preferred-Languages: en Canonical: https://app.customdomain.ai/.well-known/security.txt Policy: https://app.customdomain.ai/security Acknowledgments: https://app.customdomain.ai/security Hiring: https://customdomain.ai