HTTP/1.1 200 OK
Date: Wed, 21 Jan 2026 23:41:27 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: close
Server: cloudflare
CF-Ray: 9c1aa9991e55c52e-SJC
CF-Cache-Status: HIT
Age: 4889270
Last-Modified: Wed, 29 Oct 2025 22:59:56 GMT
Strict-Transport-Security: max-age=31536000
surrogate-control: max-age=2147483647
surrogate-key: security.dapperlabs.com 60639241dba0a755236f9168 pageId:60639241dba0a79c7d6f9169
x-lambda-id: b06a532c-bd18-40fe-907b-b87ebb64e285
vary: Accept-Encoding
Set-Cookie: _cfuvid=XRlI12gEYpfm8wJlnrvRLO7RPmBxfvkllFhsBu94aXw-1769038887884-0.0.1.1-604800000; path=/; domain=.security.dapperlabs.com; HttpOnly; Secure; SameSite=None
alt-svc: h3=":443"; ma=86400

Page title: Dapper Labs Security Team

<!DOCTYPE html><!-- Last Published: Mon Oct 20 2025 23:50:31 GMT+0000 (Coordinated Universal Time) --><html data-wf-domain="security.dapperlabs.com" data-wf-page="60639241dba0a79c7d6f9169" data-wf-site="60639241dba0a755236f9168"><head><meta charset="utf-8"/><title>Dapper Labs Security Team</title><meta content="Dapper Labs is committed to security. See our responsible disclosure policy and contact our security teams to report issues or concerns." name="description"/><meta content="Dapper Labs Security Team" property="og:title"/><meta content="Dapper Labs is committed to security. See our responsible disclosure policy and contact our security teams to report issues or concerns." property="og:description"/><meta content="https://cdn.prod.website-files.com/603804a7f3c274da06bf9153/606255a8896e0b2b5e9ec169_Website_OGimage.png" property="og:image"/><meta content="Dapper Labs Security Team" property="twitter:title"/><meta content="Dapper Labs is committed to security. See our responsible disclosure policy and contact our security teams to report issues or concerns." property="twitter:description"/><meta content="https://cdn.prod.website-files.com/603804a7f3c274da06bf9153/606255a8896e0b2b5e9ec169_Website_OGimage.png" property="twitter:image"/><meta property="og:type" content="website"/><meta content="summary_large_image" name="twitter:card"/><meta content="width=device-width, initial-scale=1" name="viewport"/><link href="https://cdn.prod.website-files.com/60639241dba0a755236f9168/css/security-dapperlabs.shared.f04231aab.css" rel="stylesheet" type="text/css"/><script type="text/javascript">!function(o,c){var n=c.documentElement,t=" w-mod-";n.className+=t+"js",("ontouchstart"in o||o.DocumentTouch&&c instanceof DocumentTouch)&&(n.className+=t+"touch")}(window,document);</script><link href="https://cdn.prod.website-files.com/60639241dba0a755236f9168/6064fc3c13bd9ff40ccaf658_32_32.png" rel="shortcut icon" type="image/x-icon"/><link href="https://cdn.prod.website-files.com/60639241dba0a755236f9168/6064fc354580309716813f60_256_256.png" rel="apple-touch-icon"/><style>
  body {
  -moz-font-feature-settings: "liga" on;
  -moz-osx-font-smoothing: grayscale;
  -webkit-font-smoothing: antialiased;
  font-feature-settings: "liga" on;
  text-rendering: optimizeLegibility;
}
</style>

<style>
  .w-webflow-badge {
    display: none !important;
  }
</style></head><body class="body"><div data-collapse="none" data-animation="default" data-duration="400" data-easing="ease" data-easing2="ease" role="banner" class="navbar w-nav"><div class="container nav w-container"><a href="/" aria-current="page" class="brand w-nav-brand w--current"><img src="https://cdn.prod.website-files.com/60639241dba0a755236f9168/60639241dba0a76ca96f91b0_dapper_logo.png" loading="lazy" alt="" class="logo"/></a><p class="paragraph">Security<br/></p></div></div><div class="section hero"><h2 class="heading-13">Dapper Labs Responsible Disclosure Program</h2><p class="paragraph-3">Dapper was built from the ground up with security in mind. Our code, infrastructure, and development methodology help us keep our users safe. <br/><br/>We appreciate and encourage the security researcher community to report potential vulnerabilities in our assets.</p><h3>Guidelines for Responsible Disclosure</h3><div>If you identify a vulnerability, please notify us using the following guidelines. <br/></div><h6 class="heading-14">Things To Do:</h6><ul role="list"><li>Make every effort to avoid unauthorized access, use, downloading, destruction, or disclosure of personal or confidential information.</li><li>Avoid actions which could impact user experience, disrupt production systems, change, or destroy data during security testing.</li><li>Use our provided communication channels to report vulnerability information to us.</li><li>Keep information about any vulnerability you discover confidential between us for a reasonable time that will allow us to review and resolve the vulnerability or until we have notified you that the vulnerability has been resolved. </li><li>Only test assets covered by the “<em>

HTTP/1.1 301 Moved Permanently
Date: Wed, 21 Jan 2026 23:41:28 GMT
Content-Type: text/html
Content-Length: 166
Connection: close
Server: cloudflare
Location: https://security.dapperlabs.com/
CF-Ray: 9c1aa99b7f63bb3e-FRA
CF-Cache-Status: HIT
Age: 8003
Cache-Control: private
surrogate-control: max-age=432000
surrogate-key: security.dapperlabs.com / sslRedirect
vary: Accept-Encoding
Set-Cookie: _cfuvid=oysRmnNMMX0mKVWuxYfa8V8AVs5vC9NxMO.m4d59udk-1769038888289-0.0.1.1-604800000; path=/; domain=.security.dapperlabs.com; HttpOnly
alt-svc: h3=":443"; ma=86400

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>openresty</center>
</body>
</html>

HTTP/1.1 200 OK
Date: Wed, 21 Jan 2026 23:41:28 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: close
Server: cloudflare
CF-Ray: 9c1aa99adb483674-FRA
CF-Cache-Status: HIT
Age: 7172946
Last-Modified: Wed, 29 Oct 2025 22:59:56 GMT
Strict-Transport-Security: max-age=31536000
surrogate-control: max-age=2147483647
surrogate-key: security.dapperlabs.com 60639241dba0a755236f9168 pageId:60639241dba0a79c7d6f9169
x-lambda-id: b06a532c-bd18-40fe-907b-b87ebb64e285
vary: Accept-Encoding
Set-Cookie: _cfuvid=kuJQRC9QrY7lj1FxbFZGPJTuyujpG2QDvci2DI8cxDg-1769038888166-0.0.1.1-604800000; path=/; domain=.security.dapperlabs.com; HttpOnly; Secure; SameSite=None
alt-svc: h3=":8443"; ma=86400

Page title: Dapper Labs Security Team

<!DOCTYPE html><!-- Last Published: Mon Oct 20 2025 23:50:31 GMT+0000 (Coordinated Universal Time) --><html data-wf-domain="security.dapperlabs.com" data-wf-page="60639241dba0a79c7d6f9169" data-wf-site="60639241dba0a755236f9168"><head><meta charset="utf-8"/><title>Dapper Labs Security Team</title><meta content="Dapper Labs is committed to security. See our responsible disclosure policy and contact our security teams to report issues or concerns." name="description"/><meta content="Dapper Labs Security Team" property="og:title"/><meta content="Dapper Labs is committed to security. See our responsible disclosure policy and contact our security teams to report issues or concerns." property="og:description"/><meta content="https://cdn.prod.website-files.com/603804a7f3c274da06bf9153/606255a8896e0b2b5e9ec169_Website_OGimage.png" property="og:image"/><meta content="Dapper Labs Security Team" property="twitter:title"/><meta content="Dapper Labs is committed to security. See our responsible disclosure policy and contact our security teams to report issues or concerns." property="twitter:description"/><meta content="https://cdn.prod.website-files.com/603804a7f3c274da06bf9153/606255a8896e0b2b5e9ec169_Website_OGimage.png" property="twitter:image"/><meta property="og:type" content="website"/><meta content="summary_large_image" name="twitter:card"/><meta content="width=device-width, initial-scale=1" name="viewport"/><link href="https://cdn.prod.website-files.com/60639241dba0a755236f9168/css/security-dapperlabs.shared.f04231aab.css" rel="stylesheet" type="text/css"/><script type="text/javascript">!function(o,c){var n=c.documentElement,t=" w-mod-";n.className+=t+"js",("ontouchstart"in o||o.DocumentTouch&&c instanceof DocumentTouch)&&(n.className+=t+"touch")}(window,document);</script><link href="https://cdn.prod.website-files.com/60639241dba0a755236f9168/6064fc3c13bd9ff40ccaf658_32_32.png" rel="shortcut icon" type="image/x-icon"/><link href="https://cdn.prod.website-files.com/60639241dba0a755236f9168/6064fc354580309716813f60_256_256.png" rel="apple-touch-icon"/><style>
  body {
  -moz-font-feature-settings: "liga" on;
  -moz-osx-font-smoothing: grayscale;
  -webkit-font-smoothing: antialiased;
  font-feature-settings: "liga" on;
  text-rendering: optimizeLegibility;
}
</style>

<style>
  .w-webflow-badge {
    display: none !important;
  }
</style></head><body class="body"><div data-collapse="none" data-animation="default" data-duration="400" data-easing="ease" data-easing2="ease" role="banner" class="navbar w-nav"><div class="container nav w-container"><a href="/" aria-current="page" class="brand w-nav-brand w--current"><img src="https://cdn.prod.website-files.com/60639241dba0a755236f9168/60639241dba0a76ca96f91b0_dapper_logo.png" loading="lazy" alt="" class="logo"/></a><p class="paragraph">Security<br/></p></div></div><div class="section hero"><h2 class="heading-13">Dapper Labs Responsible Disclosure Program</h2><p class="paragraph-3">Dapper was built from the ground up with security in mind. Our code, infrastructure, and development methodology help us keep our users safe. <br/><br/>We appreciate and encourage the security researcher community to report potential vulnerabilities in our assets.</p><h3>Guidelines for Responsible Disclosure</h3><div>If you identify a vulnerability, please notify us using the following guidelines. <br/></div><h6 class="heading-14">Things To Do:</h6><ul role="list"><li>Make every effort to avoid unauthorized access, use, downloading, destruction, or disclosure of personal or confidential information.</li><li>Avoid actions which could impact user experience, disrupt production systems, change, or destroy data during security testing.</li><li>Use our provided communication channels to report vulnerability information to us.</li><li>Keep information about any vulnerability you discover confidential between us for a reasonable time that will allow us to review and resolve the vulnerability or until we have notified you that the vulnerability has been resolved. </li><li>Only test assets covered by the “<em>

HTTP/1.1 301 Moved Permanently
Date: Wed, 21 Jan 2026 23:41:28 GMT
Content-Type: text/html
Content-Length: 166
Connection: close
Server: cloudflare
Location: https://security.dapperlabs.com/
CF-Ray: 9c1aa99b78761ca3-FRA
CF-Cache-Status: HIT
Age: 8003
Cache-Control: private
surrogate-control: max-age=432000
surrogate-key: security.dapperlabs.com / sslRedirect
vary: Accept-Encoding
Set-Cookie: _cfuvid=L7WmZrl0sVZj3Es9RbVNsXfpT_Wk0tGijx46PJ5AEUc-1769038888279-0.0.1.1-604800000; path=/; domain=.security.dapperlabs.com; HttpOnly
alt-svc: h3=":443"; ma=86400

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>openresty</center>
</body>
</html>

HTTP/1.1 200 OK
Date: Wed, 21 Jan 2026 23:41:28 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: close
Server: cloudflare
CF-Ray: 9c1aa999cde263f0-LHR
CF-Cache-Status: HIT
Age: 2
Last-Modified: Wed, 29 Oct 2025 22:59:56 GMT
Strict-Transport-Security: max-age=31536000
surrogate-control: max-age=2147483647
surrogate-key: security.dapperlabs.com 60639241dba0a755236f9168 pageId:60639241dba0a79c7d6f9169
x-lambda-id: b06a532c-bd18-40fe-907b-b87ebb64e285
vary: Accept-Encoding
Set-Cookie: _cfuvid=lfED1so3vuJi0Bp4agLPrFvc1jdL5n_u1cr3WVomuXA-1769038888006-0.0.1.1-604800000; path=/; domain=.security.dapperlabs.com; HttpOnly; Secure; SameSite=None
alt-svc: h3=":443"; ma=86400

Page title: Dapper Labs Security Team

<!DOCTYPE html><!-- Last Published: Mon Oct 20 2025 23:50:31 GMT+0000 (Coordinated Universal Time) --><html data-wf-domain="security.dapperlabs.com" data-wf-page="60639241dba0a79c7d6f9169" data-wf-site="60639241dba0a755236f9168"><head><meta charset="utf-8"/><title>Dapper Labs Security Team</title><meta content="Dapper Labs is committed to security. See our responsible disclosure policy and contact our security teams to report issues or concerns." name="description"/><meta content="Dapper Labs Security Team" property="og:title"/><meta content="Dapper Labs is committed to security. See our responsible disclosure policy and contact our security teams to report issues or concerns." property="og:description"/><meta content="https://cdn.prod.website-files.com/603804a7f3c274da06bf9153/606255a8896e0b2b5e9ec169_Website_OGimage.png" property="og:image"/><meta content="Dapper Labs Security Team" property="twitter:title"/><meta content="Dapper Labs is committed to security. See our responsible disclosure policy and contact our security teams to report issues or concerns." property="twitter:description"/><meta content="https://cdn.prod.website-files.com/603804a7f3c274da06bf9153/606255a8896e0b2b5e9ec169_Website_OGimage.png" property="twitter:image"/><meta property="og:type" content="website"/><meta content="summary_large_image" name="twitter:card"/><meta content="width=device-width, initial-scale=1" name="viewport"/><link href="https://cdn.prod.website-files.com/60639241dba0a755236f9168/css/security-dapperlabs.shared.f04231aab.css" rel="stylesheet" type="text/css"/><script type="text/javascript">!function(o,c){var n=c.documentElement,t=" w-mod-";n.className+=t+"js",("ontouchstart"in o||o.DocumentTouch&&c instanceof DocumentTouch)&&(n.className+=t+"touch")}(window,document);</script><link href="https://cdn.prod.website-files.com/60639241dba0a755236f9168/6064fc3c13bd9ff40ccaf658_32_32.png" rel="shortcut icon" type="image/x-icon"/><link href="https://cdn.prod.website-files.com/60639241dba0a755236f9168/6064fc354580309716813f60_256_256.png" rel="apple-touch-icon"/><style>
  body {
  -moz-font-feature-settings: "liga" on;
  -moz-osx-font-smoothing: grayscale;
  -webkit-font-smoothing: antialiased;
  font-feature-settings: "liga" on;
  text-rendering: optimizeLegibility;
}
</style>

<style>
  .w-webflow-badge {
    display: none !important;
  }
</style></head><body class="body"><div data-collapse="none" data-animation="default" data-duration="400" data-easing="ease" data-easing2="ease" role="banner" class="navbar w-nav"><div class="container nav w-container"><a href="/" aria-current="page" class="brand w-nav-brand w--current"><img src="https://cdn.prod.website-files.com/60639241dba0a755236f9168/60639241dba0a76ca96f91b0_dapper_logo.png" loading="lazy" alt="" class="logo"/></a><p class="paragraph">Security<br/></p></div></div><div class="section hero"><h2 class="heading-13">Dapper Labs Responsible Disclosure Program</h2><p class="paragraph-3">Dapper was built from the ground up with security in mind. Our code, infrastructure, and development methodology help us keep our users safe. <br/><br/>We appreciate and encourage the security researcher community to report potential vulnerabilities in our assets.</p><h3>Guidelines for Responsible Disclosure</h3><div>If you identify a vulnerability, please notify us using the following guidelines. <br/></div><h6 class="heading-14">Things To Do:</h6><ul role="list"><li>Make every effort to avoid unauthorized access, use, downloading, destruction, or disclosure of personal or confidential information.</li><li>Avoid actions which could impact user experience, disrupt production systems, change, or destroy data during security testing.</li><li>Use our provided communication channels to report vulnerability information to us.</li><li>Keep information about any vulnerability you discover confidential between us for a reasonable time that will allow us to review and resolve the vulnerability or until we have notified you that the vulnerability has been resolved. </li><li>Only test assets covered by the “<em>

HTTP/1.1 200 OK
Date: Wed, 21 Jan 2026 23:41:27 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: close
Server: cloudflare
CF-Ray: 9c1aa9996fcdab4c-YYZ
CF-Cache-Status: HIT
Age: 522044
Last-Modified: Wed, 26 Nov 2025 16:37:13 GMT
Strict-Transport-Security: max-age=31536000
surrogate-control: max-age=2147483647
surrogate-key: security.dapperlabs.com 60639241dba0a755236f9168 pageId:60639241dba0a79c7d6f9169
x-lambda-id: cb179724-b157-49d9-a95e-e3daf64ad921
vary: Accept-Encoding
Set-Cookie: _cfuvid=rSVc8uCqo_vPU3ML12ZgHt0rEhDtC4EPL.iOh4M3b4s-1769038887946-0.0.1.1-604800000; path=/; domain=.security.dapperlabs.com; HttpOnly; Secure; SameSite=None
alt-svc: h3=":8443"; ma=86400

Page title: Dapper Labs Security Team

<!DOCTYPE html><!-- Last Published: Mon Oct 20 2025 23:50:31 GMT+0000 (Coordinated Universal Time) --><html data-wf-domain="security.dapperlabs.com" data-wf-page="60639241dba0a79c7d6f9169" data-wf-site="60639241dba0a755236f9168"><head><meta charset="utf-8"/><title>Dapper Labs Security Team</title><meta content="Dapper Labs is committed to security. See our responsible disclosure policy and contact our security teams to report issues or concerns." name="description"/><meta content="Dapper Labs Security Team" property="og:title"/><meta content="Dapper Labs is committed to security. See our responsible disclosure policy and contact our security teams to report issues or concerns." property="og:description"/><meta content="https://cdn.prod.website-files.com/603804a7f3c274da06bf9153/606255a8896e0b2b5e9ec169_Website_OGimage.png" property="og:image"/><meta content="Dapper Labs Security Team" property="twitter:title"/><meta content="Dapper Labs is committed to security. See our responsible disclosure policy and contact our security teams to report issues or concerns." property="twitter:description"/><meta content="https://cdn.prod.website-files.com/603804a7f3c274da06bf9153/606255a8896e0b2b5e9ec169_Website_OGimage.png" property="twitter:image"/><meta property="og:type" content="website"/><meta content="summary_large_image" name="twitter:card"/><meta content="width=device-width, initial-scale=1" name="viewport"/><link href="https://cdn.prod.website-files.com/60639241dba0a755236f9168/css/security-dapperlabs.shared.f04231aab.css" rel="stylesheet" type="text/css"/><script type="text/javascript">!function(o,c){var n=c.documentElement,t=" w-mod-";n.className+=t+"js",("ontouchstart"in o||o.DocumentTouch&&c instanceof DocumentTouch)&&(n.className+=t+"touch")}(window,document);</script><link href="https://cdn.prod.website-files.com/60639241dba0a755236f9168/6064fc3c13bd9ff40ccaf658_32_32.png" rel="shortcut icon" type="image/x-icon"/><link href="https://cdn.prod.website-files.com/60639241dba0a755236f9168/6064fc354580309716813f60_256_256.png" rel="apple-touch-icon"/><style>
  body {
  -moz-font-feature-settings: "liga" on;
  -moz-osx-font-smoothing: grayscale;
  -webkit-font-smoothing: antialiased;
  font-feature-settings: "liga" on;
  text-rendering: optimizeLegibility;
}
</style>

<style>
  .w-webflow-badge {
    display: none !important;
  }
</style></head><body class="body"><div data-collapse="none" data-animation="default" data-duration="400" data-easing="ease" data-easing2="ease" role="banner" class="navbar w-nav"><div class="container nav w-container"><a href="/" aria-current="page" class="brand w-nav-brand w--current"><img src="https://cdn.prod.website-files.com/60639241dba0a755236f9168/60639241dba0a76ca96f91b0_dapper_logo.png" loading="lazy" alt="" class="logo"/></a><p class="paragraph">Security<br/></p></div></div><div class="section hero"><h2 class="heading-13">Dapper Labs Responsible Disclosure Program</h2><p class="paragraph-3">Dapper was built from the ground up with security in mind. Our code, infrastructure, and development methodology help us keep our users safe. <br/><br/>We appreciate and encourage the security researcher community to report potential vulnerabilities in our assets.</p><h3>Guidelines for Responsible Disclosure</h3><div>If you identify a vulnerability, please notify us using the following guidelines. <br/></div><h6 class="heading-14">Things To Do:</h6><ul role="list"><li>Make every effort to avoid unauthorized access, use, downloading, destruction, or disclosure of personal or confidential information.</li><li>Avoid actions which could impact user experience, disrupt production systems, change, or destroy data during security testing.</li><li>Use our provided communication channels to report vulnerability information to us.</li><li>Keep information about any vulnerability you discover confidential between us for a reasonable time that will allow us to review and resolve the vulnerability or until we have notified you that the vulnerability has been resolved. </li><li>Only test assets covered by the “<em>