Skip to main content

Updated: July 28, 2023

Coordinated vulnerability disclosure policy

Security is essential to OpenAI’s mission. We value the input of hackers acting in good faith to help us maintain a high standard for the security and privacy for our users and technology. This includes encouraging responsible vulnerability research and disclosure.

Bug bounty

The OpenAI Bug Bounty Program is a way for us to recognize and reward the valuable insights of security researchers who contribute to keeping our technology and company secure. We invite you to report vulnerabilities, bugs, or security flaws you discover in our systems. By sharing your findings, you will play a crucial role in making our technology safer for everyone.

Detailed guidelines and rules for participation can be found on our Bug Bounty Program page(opens in a new window).

Incident reporting

To report a security incident, please let us know immediately by submitting an encrypted report. Information shared with us in this manner must be shared unconditionally.