We are committed to protecting the security of members and creators by addressing security issues responsibly and in a timely manner.
If you’re a security expert or researcher and believe you have discovered a security-related issue with Patreon, we appreciate your help in disclosing the issue to us responsibly.
We require that you:
- Use our Security Policy page for further instructions on how to submit bug reports. Security researchers must include detailed information, along with clear steps, to enable us to reproduce the vulnerability.
- Give us a reasonable amount of time to respond to the issue before making any information about it public.
- Refrain from:
- Accessing or modifying user information without the permission of the account owner.
- Exposing other users to vulnerabilities. All testing should be done on your own user pages and only between accounts you control. This includes pledging to actual creators. If you need to test the pledging functionality, create a second test account and set it to “creator” status.
- Act in good faith not to degrade the performance of our services (including denial of service).