You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/hackers/hacker-mediation.md
+2-2Lines changed: 2 additions & 2 deletions
Original file line number
Diff line number
Diff line change
@@ -20,7 +20,6 @@ Hacker mediation is used to raise concerns about reports to security teams and f
20
20
21
21
### Requesting Hacker Mediation
22
22
To request mediation:
23
-
24
23
* Open the report you'd like to request HackerOne mediation support for.
25
24
* Scroll to the bottom of the report.
26
25
* Click **Request Mediation**.
@@ -42,13 +41,13 @@ Finally, keep in mind that HackerOne is no longer able to add external researche
42
41
43
42
### Hacker Mediation Triggers
44
43
Requesting hacker mediation triggers the following actions:
45
-
46
44
* An email is sent to the program's security team, requesting that they make their best effort to resolve the issue with the hacker within 3 business days.
47
45
* If the security team doesn't respond to the hacker or if the situation isn't resolved, HackerOne will evaluate all available information about the vulnerability report, the hacker who requested mediation, and the organization to determine the appropriate level of escalation.
48
46
* HackerOne’s Customer Success team will escalate certain concerns to program teams and engage closely to encourage a favorable outcome if, in HackerOne's judgment, the hacker's case warrants it.
49
47
* If the security team is unable to respond to the hacker or if the situation is not promptly resolved, The Mediation team will contact all involved parties and work together with the hacker and program teams to gain an appropriate and timely outcome.
50
48
51
49
**Mediation Requests vs Support Requests**
50
+
52
51
Mediation requests are different from Support requests. When requesting mediation, it’s important that you request for the right reasons, as some issues are best taken to HackerOne Support instead. Here’s a table to help you see the difference between the type of requests:
53
52
54
53
@@ -62,4 +61,5 @@ General questions |
62
61
63
62
64
63
**The Make It Right Fund**
64
+
65
65
There may be cases where HackerOne may believe a hacker’s submission has been handled incorrectly. We want to make sure hackers are awarded for their efforts in such cases. After extensive backend reviews are completed of the specific report, the hacker may be considered for a discretionary correction from the HackerOne Make It Right Fund. Please keep in mind that not every report is eligible for Make It Right and the decision to recommend or consider a Make It Right award belongs to HackerOne. Usage of Make It Right may be noted in the report’s record for transparency.
0 commit comments