Response times

What to expect, and when

Commitments below apply to Critical findings only. High-severity findings receive best-effort response on the same timeline in practice, but are not contractually guaranteed. Acknowledgment or response to findings deemed Medium criticality or lower are not required or guaranteed.

Stage Timeline Clock starts
Acknowledgment 3 business days Date report received
Initial triage 10 business days Acknowledgment
Final classification & payout 30 business days Acknowledgment
Remediation — Critical 7 days Final classification & payout
Remediation — High 30 days Final classification & payout
All timelines are measured from the acknowledgment date, except remediation targets, which begin after final classification & payout.
Reward & severity guidance

Rewards

Bounty payments require a minimum severity of High. Medium, Low, and Informational findings are accepted and acknowledged, but are not eligible for monetary reward.

Informational $0 Best practice
Low $0 Acknowledgment only
Medium $0 Acknowledgment only
High Paid Bounty-eligible
Critical Paid Bounty-eligible

How severity is decided

  • User interaction — none required → single click → complex chain
  • Scale — mass/bulk → multiple users → single user
  • Auth required — unauthenticated → unauth + interaction → authenticated
  • Requires the victim to grant access first → Informational (insider threat, not a vulnerability)

Partial rewards

  • The vulnerability is valid but actual impact is lower than the tier suggests
  • The proof-of-concept is incomplete but the vulnerability can be independently confirmed
  • The finding is a novel variant of a known issue that adds meaningful new information
All awards are granted at Wispr Flow's discretion following internal validation. Severity is classified on what is independently verified, not what the reporter claims.
scope

What's in and out of scope

In scope

  • Production domains*.wisprflow.ai and associated production domains/subdomains (excluding roadmap.wisprflow.ai)
  • Backend APIsapi.wisprflow.ai and dl.wisprflow.com (auto-update CDN)
  • Client applicationsElectron, macOS, Windows, iOS, and Android — confidentiality, integrity, or availability issues
  • High-impact classesAuth/authz flaws, data leakage, RCE, cryptographic misuse, auto-update supply-chain integrity
  • InfrastructureServers, containers, production databases, public S3 buckets, public cloud services
×

Out of scope

  • Third-party servicesNon-Wispr domains (stripe.com, AWS console) and subdomains not owned or managed by Wispr Flow
  • Social engineering & DoSPhishing of employees, DoS/DDoS, load-testing, and MITM against HTTPS endpoints
  • Low-impact / theoreticalSelf-XSS, missing non-critical headers, clickjacking on non-sensitive pages, version disclosure
  • Rate limitingWithout a demonstrated complete attack chain resulting in account compromise or data exposure
  • Scanner output & non-security bugsBurp/Nessus/Nuclei output without manual validation; UX issues (use product feedback)

Android has limited functionality compared to other clients. Core surfaces: dictation, floating bubble, transcript history, account profile, and privacy mode toggle. No in-app subscription, no language selection UI, no dictionary/snippets, no feature flags. Enterprise users have privacy mode auto-enabled and locked client-side (cannot be changed by the user).

If you're unsure whether an issue is in scope, report it anyway — Wispr Flow will triage it.

Frequently asked questions

Are missing CAA records eligible for a bounty?

Not on their own. Missing CAA DNS records are only in scope when combined with real certificate misissuance.

Are subdomain takeovers in scope?

Yes, for subdomains owned or managed by Wispr Flow. Subdomains not owned or managed by Wispr Flow are out of scope.

Are client-side issues eligible?

Yes — issues affecting confidentiality, integrity, or availability beyond normal user operation in the Electron, macOS, Windows, iOS, or Android clients are in scope. Client-side enforcement bypasses where server-side validation is absent are explicitly listed as high-impact.

Are Medium-severity findings bounty-eligible?

No. Bounty payments require a minimum severity of High. Medium, Low, and Informational findings are accepted and acknowledged but receive no monetary reward.

Can I use AI tools in my research?

AI tools can support your research, but submissions must reflect original, hands-on testing against Wispr Flow's production systems. Reports that are primarily AI-generated without demonstrated manual verification will be closed without review.

What if my finding is a duplicate?

Only the first reporter of a given vulnerability is eligible for a bounty. If your finding duplicates a known issue, you'll be notified and no payout will be issued. If you believe it's a novel variant, include a clear explanation of how it differs.

Is there a submission limit?

Yes — 5 bounty-eligible reports per calendar month per researcher. Additional submissions are queued but not eligible for bounty. The limit resets monthly and does not apply to High- or Critical-severity findings.

Can I test against real user accounts?

No — use only accounts you control. Describe theoretical impact rather than accessing real data.