Responsible Disclosure Statement

If you’re poking around Pinterest and find a security vulnerability, we really want to hear about it. Reports like these help keep our site safe and secure for everyone, and make you our hero. (We’ll even send you some swag as thanks!)

Your report

  • Write to us at security@pinterest.com.
  • Include our PGP key if your email is especially sensitive.

Our guidelines

  • Give us enough details to reproduce the vulnerability
  • Allow us a reasonable amount of time to fix the vulnerability before making any info public
  • Avoid data deletion, unauthorized data access, and service disruption while testing the vulnerability you found
  • Don’t ask for compensation for your report

Our commitment

  • We’ll let you know we got your report
  • We’ll give you an estimate of how long the fix will take
  • We’ll tell you when we’ve fixed the vulnerability

Our thanks

If (and only if!) you'd like to be recognized for your contribution, we’d love to add you to our Heroes of Pinterest list, by name or anonymously. We’d also like to send you a little something as a thank you—include your preferred shirt style, size, and mailing address in your report.

Heroes of Pinterest

The following researchers have helped us identify and fix vulnerabilities. Thanks to all!

  • Ashley Boxhall
  • Muhammad Shahmeer
  • Michael Henriksen
  • Kamil Sevi
  • Ali Hasan Ghauri
  • Juan Broullón
  • Gökmen Güreşçi
  • Luis Teixeira
  • Sahil Dhar
  • Manish Bhattacharya
  • Dan Melamed
  • Brendon Tiszka
  • Nishant Das Patnaik