# Responsible Disclosure If you discover a security vulnerability in Rome Protocol, please report it responsibly. ## Reporting Open a ticket in the [Rome Discord](https://discord.gg/vZ9rnCdNSB) — use the ticket channel to reach the core team privately. **What to include:** * Description of the vulnerability * Steps to reproduce * Potential impact assessment * Your contact information for follow-up ## Guidelines * Do **not** publicly disclose the vulnerability before a fix is deployed * Do **not** exploit the vulnerability beyond what is necessary to demonstrate it * Do **not** access or modify data belonging to other users * Allow reasonable time for the team to investigate and fix the issue ## Scope In scope: * Rome EVM on-chain program * Rome Proxy, Hercules, Rhea services * Rome Solidity SDK and contract libraries * Oracle Gateway adapters * Meta-Hook Router * Bridge contracts (ERC20SPL, Factory, Registry) Out of scope: * Third-party dependencies (report to their maintainers) * Social engineering attacks * Denial of service against testnet/devnet infrastructure * Issues in deprecated or archived repositories ## Community * [Discord](https://discord.gg/vZ9rnCdNSB) — general questions and support * [Telegram](https://t.me/+tdnr-M6kcngxYzhk) — community updates * [GitHub](https://github.com/rome-labs) — code and issue tracking --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.rome.builders/security/responsible-disclosure.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.