If you believe you have found a security vulnerability in the OpenReview codebase, we encourage you to let us know immedately by sending a full report to security@openreview.net. We will do our best to quickly investigate and fix the problem.

While we do not have a bounty program in place yet, we are incredibly thankful for people who take the time to share their findings with us. Whether it's a tiny bug or a more serious security vulnerability, all reports help us to continuously improve OpenReview for everyone. Thank you!