Company
Pine AI
Program URL
https://www.19pine.ai/security
Contact
mailto:security@19pine.ai
Rewards
Program type
vdp
Status
active
Description
Pine does not currently operate a formal bug bounty program and cannot guarantee monetary rewards. For valid, impactful findings disclosed responsibly, we may offer the following at our discretion.
- Public acknowledgment on this page
- A LinkedIn recommendation from our team
- Pine swag
- At our discretion, a one-time goodwill payment
Domains
Structured scope
*.19pine.ai | Pine web application
Pine mobile apps (iOS / Android)
Pine APIs
Authentication, authorization, account takeover, and PII exposure vulnerabilities
Out of scope
Social engineering, phishing, or physical attacks
Denial-of-service attacks
Vulnerabilities in third-party services we integrate with
Self-XSS or attacks requiring user-side manipulation without remote exploitation
Findings from automated scanners without demonstrated impact
Missing security headers without exploitable consequence
Content spoofing without credible risk
AI prompt injection from user-uploaded content, which is treated as user-level input by design
Minimum payout
No response
Maximum payout
No response
Currency
No response
Payout - critical
No response
Payout - high
No response
Payout - medium
No response
Payout - low
No response
Testing policy URL
No response
Excluded methods
Requires account
None
Safe harbor
None
Allows disclosure
None
Disclosure timeline days
No response
Response SLA days
3
Legal terms URL
No response
Hall of fame URL
https://www.19pine.ai/security#acknowledgments
Swag details
No response
Reporting URL
No response
PGP key URL
No response
Preferred languages
No response
Standards
Confirmation
Company
Pine AI
Program URL
https://www.19pine.ai/security
Contact
mailto:security@19pine.ai
Rewards
Program type
vdp
Status
active
Description
Pine does not currently operate a formal bug bounty program and cannot guarantee monetary rewards. For valid, impactful findings disclosed responsibly, we may offer the following at our discretion.
Domains
Structured scope
Out of scope
Minimum payout
No response
Maximum payout
No response
Currency
No response
Payout - critical
No response
Payout - high
No response
Payout - medium
No response
Payout - low
No response
Testing policy URL
No response
Excluded methods
Requires account
None
Safe harbor
None
Allows disclosure
None
Disclosure timeline days
No response
Response SLA days
3
Legal terms URL
No response
Hall of fame URL
https://www.19pine.ai/security#acknowledgments
Swag details
No response
Reporting URL
No response
PGP key URL
No response
Preferred languages
No response
Standards
Confirmation