Security Researcher Hall of Fame

Recognition for researchers who have responsibly disclosed vulnerabilities to Apex Platform (southlodge.ai) under our coordinated disclosure policy.

About this page

We list every researcher who reports a confirmed Critical or High severity finding (and any Medium where the researcher has asked to be acknowledged), under the handle they choose. If you'd prefer to remain anonymous, we'll honour that — just say so in your report.

We're not yet running a paid bug-bounty programme; this Hall of Fame is the public acknowledgement channel until that ships. The conditions for a paid programme are tracked in our HUMAN-DECISIONS register §3.

Acknowledged researchers

No public disclosures yet. This page is published in advance of the first coordinated disclosure so that the path is well-defined and discoverable. The first acknowledgement will appear here once a confirmed vulnerability has been remediated and the researcher has agreed to public attribution.

How to be listed

Submit a report via the email channel listed in our security.txt (or the contact in the disclosure policy).
Indicate in your report whether you'd like to be publicly acknowledged, and under what handle. The default is private acknowledgement only — we won't list you without explicit consent.
Allow us reasonable time to remediate (per the SLAs in the disclosure policy) before any public discussion.

What we promise

Written acknowledgement within 5 working days of any in-scope report.
Public listing here within 14 days of remediation, under the handle you nominate, unless you've asked to remain anonymous.
No legal action against researchers acting in good faith under this policy.

Last reviewed: 2026-05-07. This page is the canonical Hall of Fame referenced from /.well-known/security.txt and /security/disclosure-policy.html.