Cloudsmith

Cloudsmith is a fully-managed solution that gets your teams out of maintenance mode, and brings cloud-native performance to your workflows and operations.

Web2

Bounty

Hall of Fame

Visit Cloudsmith

Please visit the official website for the latest information.

Cloudsmith aims to keep its Service safe, and data security is of utmost priority. Suppose you are a security researcher and have discovered a security vulnerability in the Service. In that case, we appreciate your help in disclosing it to us privately and letting us fix it before publishing technical details.

In Scope

the Cloudsmith Classic App (the "old" app)
the Cloudsmith Web App (the "new" app)
the Cloudsmith Core API
and the Cloudsmith Corporate Site

Recommended Blogs

Bypassing LFI (Local File Inclusion)

Abhishek

•

Jun 3, 2021

HTTP Parameter Pollution - It’s Contaminated

Jerry Shah

•

Jul 24, 2020

How I turned Self XSS to Stored via CSRF

Abhishek

•

Nov 29, 2019