Security issues

Issues pertaining to the security of Sansar should be sent to Sansar by the method described below. Please help us keep Sansar secure by ensuring that possible security exploits aren't broadly advertised before a fix is available.

What constitutes a security issue?

If an issue poses any of the following threats to Sansar, its customers, or content, then it is an exploit and should be reported:

  • Exposes the real life identity of users without consent

  • Destroys content

  • Permits unauthorized access to Sansar or Sansar resources

  • Compromises the Sansar client or server host, subjecting it to remote control

  • Links to malicious external websites

How do I report a security issue?

To file a security issue:

  1. Join the sansar Discord!

  2. Contact a Admin or another member of Sansar Staff indicated by a '- Sansar' tag

  3. Mention you are making a Security Report and What type of problem are you having?

  4. Enter a Subject and Description of the security issue. Provide as much detail as possible, including your environment (information about your computer, such as your operating system and the model of your graphics card). Include steps to reproduce the security issue.

  5. Please indicate the urgency of this security defect, please select Moderate, Serious, or Critical.

  6. Attachments, include any relevant screenshots, logs, or other files.

Please report issues as soon as you discover them!

For other issues:

  • If you believe your account has been breached, please attempt to change your password immediately via the website and make contact with a member of staff via Discord.

  • If you are experiencing any other problem, please make a report in a relevant section i.e. support or bugs section.

Last updated