While we appreciate reports, we do not have a formal bug bounty and do not provide financial compensation for vulnerability reports.
If you believe you’ve discovered a vulnerability in the Pax8 Marketplace, please complete the form. We will respond as quickly as possible, and we ask that you not disclose any information publicly until the issue has been addressed.