Scope

This policy applies to all systems, applications, and infrastructure operated by Limitless Network including:

• Main website and subdomains (*.limitless.exchange)
• Web applications and APIs
• Network infrastructure

Authorised Testing

Prohibited Activities:

• Testing third-party systems or services
• Accessing data belonging to other users
• Denial of service, spam, or brute force attacks
• Social engineering against employees or users
• Intentional destruction or modification of data

Reporting Guidelines

Contact Information

• Email: [email protected] (PGP encrypted preferred)
• Discord: create a ticket https://discord.com/invite/aGSS8zswwB

Required Information

1. Vulnerability Details:
   • Clear description of the issue
   • Steps to reproduce
   • Potential impact assessment
2. Evidence:
   • Screenshots or video demonstrations
   • Proof-of-concept code (if applicable)
   • HTTP requests/responses
   • System outputs
3. Contact Information:
   • Preferred contact method
   • PGP key (if using encryption)