Tigera is a provider of network software for Kubernetes environments and as such, we take our responsibility to protect our customer’s information very seriously. We are committed to tracking, reporting and addressing security issues in a responsible, constructive and expedient manner. Our users, customers, and partners are an important part of this process.
This policy applies to the following projects and products:
Any service not explicitly mentioned above is excluded from this policy.
If you believe that you have identified a vulnerability in any of our products listed above, please submit a vulnerability report at firstname.lastname@example.org. Reports may be submitted anonymously. All reports should include the following information:
Upon receiving a vulnerability report, Tigera will take the following steps:
We appreciate the efforts of security researchers who discover and share security information with us. Thank you for your cooperation and collaboration with us.