Hi Sec-Gemini team,
I'm an independent security researcher (Google OSS VRP & GitHub OSS VRP
participant). I've been reviewing the open-source CLI + Python SDK in this
repo and have several findings I'd like to validate end-to-end against the
hosted service before responsible disclosure via
https://bughunters.google.com.
Could I be granted an early-access invite to secgemini.google for this
purpose? I will:
- Use only my own account / API key
- No automated scanning, no DoS, no multi-tenant probing
- Follow Google VRP rules of engagement
- Disclose any findings privately via the VRP portal, not in public issues
Prior security disclosures (researcher credentials): Credit : GitHub: @hits313
Happy to share a research scope statement or sign anything required
Hi Sec-Gemini team,
I'm an independent security researcher (Google OSS VRP & GitHub OSS VRP
participant). I've been reviewing the open-source CLI + Python SDK in this
repo and have several findings I'd like to validate end-to-end against the
hosted service before responsible disclosure via
https://bughunters.google.com.
Could I be granted an early-access invite to secgemini.google for this
purpose? I will:
Prior security disclosures (researcher credentials): Credit : GitHub: @hits313
Happy to share a research scope statement or sign anything required