We recognise the security researchers who responsibly disclose vulnerabilities and help protect the families and care teams who rely on us.
Our vulnerability disclosure programme welcomes good-faith reports from independent security researchers. Eligible reports are credited here with the researcher's permission.
Critical vulnerability in authentication
XSS vulnerability in user input
API rate limiting bypass