Security Exploit Bounty Program
$25 to $250 depending on the severity

Responsible Disclosure
Security of user data and communication is of utmost importance to ClickUp. In pursuit of the best possible security for our service, we welcome responsible disclosure of any vulnerability you find in ClickUp. Principles of responsible disclosure include, but are not limited to:

In order to be eligible for a bounty, your submission must be accepted as valid by ClickUp. We use the following guidelines to determine the validity of requests and the reward compensation offered.

Reproducibility
Our engineers must be able to reproduce the security flaw from your report. Reports that are too vague or unclear are not eligible for a reward. Reports that include clearly written explanations and working code are more likely to garner rewards.

Severity
More severe bugs will be met with greater rewards. We are most interested in vulnerabilities with app.clickup.com. Other subdomains of clickup are generally not eligible for rewards unless the reported vulnerability somehow affects app.clickup.com or ClickUp customer data. In general, bug bounty rewards are only issued for global vulnerabilities. This means bug bounties are not issued for vulnerabilities that are isolated to teams a user is on.

Examples of Qualifying Vulnerabilities

Examples of Non-Qualifying Vulnerabilities

Rewards

To receive a reward, you must reside in a country not on sanctions lists (e.g., Cuba, Iran, North Korea, Sudan & Syria). This is a discretionary program and ClickUp reserves the right to cancel the program; the decision whether or not to pay a reward is at our discretion. Note that we will only give out rewards via PayPal

Contact
Please email us at help@clickup.com with any vulnerability reports or questions about the program.

By continuing to use this site you consent to the use of cookies on your device as described in our cookie policy unless you have disabled them. You can change your cookie settings at any time but parts of our site will not function correctly without them.
Accept All Cookies
Sign up for FREE
and start using ClickUp in seconds!
Get ClickUp
Please enter valid email address