Last updated: 2026-07-02
We take the security of our services and our users' data seriously. This page describes how to report a vulnerability in any ONTOOLER service and what to expect from us. A machine-readable version is available at /.well-known/security.txt.
If you believe you have found a security vulnerability in any ONTOOLER service, please email ai@onoffer.kr with the subject line "SECURITY". Please include: a description of the issue, steps to reproduce (or a proof of concept), the affected URL/endpoint or plugin, and your contact information.
Please give us a reasonable opportunity to remediate before any public disclosure.
We ask security researchers to act in good faith:
We will not pursue legal action against researchers who follow these rules and report issues in good faith.
Security reports: ai@onoffer.kr (subject "SECURITY") General support: ai@onoffer.kr Operator: (주)온오퍼 (ONTOOLER)