OpsLevel Logo
Product

Visibility

Catalog

Keep an automated record of truth

Integrations

Unify your entire tech stack

AI Engine

Restoring knowledge & generating insight

Standards

Scorecards

Measure and improve software health

Campaigns

Action on cross-cutting initiatives with ease

Checks

Get actionable insights

Developer Autonomy

Service Templates

Spin up new services within guardrails

Self-service Actions

Empower devs to do more on their own

Knowledge Center

Tap into API & Tech Docs in one single place

Featured Resource

March Product Updates
March Product Updates
Read more
Use Cases

Use cases

Improve Standards

Set and rollout best practices for your software

Drive Ownership

Build accountability and clarity into your catalog

Developer Experience

Free up your team to focus on high-impact work

Featured Resource

The Ultimate Guide to Microservices Versioning Best Practices
The Ultimate Guide to Microservices Versioning Best Practices
Read more
Customers
Our customers

We support leading engineering teams to deliver high-quality software, faster.

More customers
Hudl
Hudl goes from Rookie to MVP with OpsLevel
Read more
Hudl
Keller Williams
Keller Williams’ software catalog becomes a vital source of truth
Read more
Keller Williams
Duolingo
How Duolingo automates service creation and maintenance to tackle more impactful infra work
Read more
Duolingo
Resources
Our resources

Explore our library of helpful resources and learn what your team can do with OpsLevel.

All resources

Resource types

Blog

Resources, tips, and the latest in engineering insights

Guide

Practical resources to roll out new programs and features

Demo

Videos of our product and features

Events

Live and on-demand conversations

Interactive Demo

See OpsLevel in action

Pricing

Flexible and designed for your unique needs

Docs
Log In
Book a demo
Log In
Book a demo
No items found.
Table of contents
Links will generate here
Home
Legal

Responsible Disclosure

OpsLevel welcomes and encourages security research reports regarding vulnerabilities with our systems. We do not prosecute people who discover and report vulnerabilities to us responsibly and according to the below guidelines. We treat all reports seriously and with high priority.

Guidelines

  • Please avoid any privacy violations, degradations and disruption to our production systems during your testing. This includes any activity that has an impact to the availability of our systems.
  • Do not attempt to brute-force or spam our systems. Specifically, please avoid the use of automated vulnerability scanning tools.
  • Never exploit a vulnerability you discover to view data or alter data without authorization.
  • Please keep information disclosed confidential between yourself and OpsLevel, until we resolve the issue. We will make our best efforts to fix issues in a short timeframe.

Scope

The following are in scope as part of our Responsible Disclosure Program:

  • app.opslevel.com

Vulnerability Submissions

Please report any security issues you find to security@opslevel.com. If your submission contains any sensitive vulnerability information, please encrypt it using our PGP public key at the bottom of this page.

Please include the following in your submission:

  • Your name and contact information
  • Company name (if applicable)
  • A detailed description of the potential vulnerability
  • Exact steps to reproduce the issue, including any associated URL and parameters demonstrating the vulnerability.
  • Any relevant details of your system’s configuration, such as any browser or user-agent information.
  • Your IP address and OpsLevel account, to coordinate with our logs.

Reward

A reward may be awarded after verifying that the vulnerability is reproducible, unique, and has an impact to our customers. Each submission will be evaluated case-by-case. The decision and amount of the reward will be at our discretion.

Thank You

We want to make sure to sincerely thank you for your disclosing responsibly and working with us improve our security. We understand the work and talent you've put into finding these issues and appreciate you reaching out to us.

Hall of Fame

We'd like to thank the following researchers for their responsible reporting of vulnerabilities. Thank you for helping us keep OpsLevel secure.

  • Paul O'Sullivan (2023)
  • Lee Boynton (2021)
  • Mehedi Hason (2020)

Our PGP Key

If you are submitting sensitive vulnerability information or wish to communicate with us privately about your concern, you can use the following PGP key to encrypt your message to us.

Product
Software catalogMaturityIntegrationsSelf-serviceKnowledge CenterBook a meeting
Company
About usCareersContact usCustomersPartnersSecurity
Resources
DocsEventsBlogPricingDemoGuide to Internal Developer PortalsGuide to Production Readiness
Comparisons
OpsLevel vs BackstageOpsLevel vs CortexOpsLevel vs Atlassian CompassOpsLevel vs Port
Subscribe
Join our newsletter to stay up to date on features and releases.
By subscribing you agree to with our Privacy Policy and provide consent to receive updates from our company.
SOC 2AICPA SOC
© 2024 J/K Labs Inc. All rights reserved.
Terms of Use
Privacy Policy
Responsible Disclosure
By using this website, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. View our Data Processing Agreement for more information.
Okay!