The Dremio Security team takes security findings extremely seriously. We care deeply about the security of our products and the data that they protect. We investigate every reported security vulnerability and take action to remediate and/or mitigate all issues that we encounter.
Dremio encourages responsible security research on our services and products.
- Please read our responsibility disclosure limitations page (Responsible Disclosure Limitations | Dremio) before sending your findings to us.
- When reporting a potential vulnerability to Dremio, please include a detailed description of the vulnerability, targets, steps, artifacts (such as web requests, responses and screen captures) in your report and send it to [email protected].
We would like to thank everyone in the list below who reported valid security findings on Dremio products. Credit is given only after a finding is validated and remediated by the Dremio team.
| Name | Contact |
| Khetaram Mali | Khetaram Mali |
| Marek Jilek | mjilek.cz |
| Faizan Ahmed | Faizan Ahmed |
| Pratik Tryambake | @tryambakepratik |
| BENGANA Yassine | cert.michelin.com |
| ESCOURBIAC Maxime | cert.michelin.com |
| Marc Olivier Bergeron | gosecure.ai |
| Husnain Iqbal | Husnain Iqbal |