Zitadel · Vulnerability Disclosure

Zitadel Vulnerability Disclosure

Vulnerability disclosure

Zitadel publishes a vulnerability disclosure policy for reporting security issues. A machine-readable /.well-known/security.txt is served. A dedicated security contact is published.

AuthenticationAuthorizationIdentity ManagementOpen SourceOAuth 2.0OIDC
Program: security.txt present

Disclosure Policy

Policy
Policy

Security Contact

Contact
https://zitadel.com/vulnerability
Contact
mailto:security@zitadel.com

Source

Vulnerability Disclosure

Raw ↑
generated: '2026-07-11'
method: searched
probe: true
source: https://zitadel.com/.well-known/security.txt
policy:
- https://github.com/zitadel/zitadel/blob/main/SECURITY.md
- https://trust.zitadel.com/resources?s=aw085mxrel3icmbmkphns3&name=zitadel-vulnerability-disclosure-policy
contact:
- https://zitadel.com/vulnerability
- mailto:security@zitadel.com
evidence:
- source: https://zitadel.com/.well-known/security.txt
  kind: security.txt (live probe)