trisquel-icecat/icecat/SECURITY.md

IceCat Security FAQ

General information about security at GNU is available at https://www.mozilla.org/en-US/security/.

I want to report a security bug!

Please report IceCat bugs in our Bugzilla instance by using our bug bounty form. Be aware that your e-mail address will be made public. See our Bugzilla etiquette for more.

Do you have a bounty program?

We have two:

• IceCat browsers fall under the IceCat bug bounty program which is handled on Bugzilla.
• The general Mozilla Security Bug Bounty Program also covers other products and services and is on HackerOne.

I have a question! Who can help?

Questions regarding security bugs or our bounty programs can be directed to security@mozilla.com. An encryption key for sending GPG encrypted mails is also available.

Where can I find security advisories?

We publish IceCat security advisories for all released versions of IceCat Desktop. For other products including IceCat for iOS and Android please refer to the overview.